Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the removal of the ubifsassert0 validation in ubifsreleasepage, which may result in an abnormal process stat...

PT-2024-10861 · Huawei · Huawei Products

Name of the Vulnerable Software and Affected Versions: Huawei products affected versions not specified Description: There is a NULL pointer dereference issue in some Huawei products. An attacker can send specially crafted POST messages to the affected products. Due to insufficient validation of...

Denial Of Service (DoS)

servicemesh-proxy is vulnerable to denial of service. When a cluster is deleted via Cluster Discovery Service CDS all idle connections established to endpoints in that cluster are disconnected. A recursion was introduced in the procedure of disconnecting idle connections that can lead to stack...

Envoy has an unspecified vulnerability (CNVD-2022-16288)

Envoy is an open source distributed proxy server. Envoy has a security vulnerability that can be exploited by attackers to cause stack exhaustion and abnormal process termination...

CVE-2021-40042

There is a release of invalid pointer vulnerability in some Huawei products, successful exploit may cause the process and service abnormal. Affected product versions include: CloudEngine 12800 V200R019C10SPC800, V200R019C10SPC900; CloudEngine 5800 V200R019C10SPC800, V200R020C00SPC600; CloudEngine...

Null pointer dereference

There is a release of invalid pointer vulnerability in some Huawei products, successful exploit may cause the process and service abnormal. Affected product versions include: CloudEngine 12800 V200R019C10SPC800, V200R019C10SPC900; CloudEngine 5800 V200R019C10SPC800, V200R020C00SPC600; CloudEngine...

CVE-2021-40042

CVE-2021-40042 is an invalid pointer vulnerability affecting Huawei CloudEngine devices (12800: V200R019C10SPC800/SPC900; 5800: V200R019C10SPC800, V200R020C00SPC600; 6800: V200R019C10SPC800/900, V200R020C00SPC600, V300R020C00SPC200; 7800: V200R019C10SPC800). Root cause: invalid pointer dereferenc...

CVE-2021-22365

There is an out of bounds read vulnerability in eSE620X vESS V100R001C10SPC200, V100R001C20SPC200, V200R001C00SPC300. A local attacker can exploit this vulnerability by sending specific message to the target device. Due to insufficient validation of internal message, successful exploit may cause...

Input validation

There is an out of bounds read vulnerability in eSE620X vESS V100R001C10SPC200, V100R001C20SPC200, V200R001C00SPC300. A local attacker can exploit this vulnerability by sending specific message to the target device. Due to insufficient validation of internal message, successful exploit may cause...

Buffer overflow

Huawei eNSP software with software of versions earlier than V100R002C00B510 has a buffer overflow vulnerability. Due to the improper validation of specific command line parameter, a local attacker could exploit this vulnerability to cause the software process abnormal...

Security Advisory - Buffer Overflow Vulnerability in eNSP Software

There is a buffer overflow vulnerability in eNSP software. Due to the improper validation of specific command line parameter, a local attacker could exploit this vulnerability to cause the software process abnormal. Vulnerability ID: HWPSIRT-2017-12012 This vulnerability has been assigned a Commo...