HuaWei 多款产品信息泄露漏洞

Huawei CloudEngine 12800 is a 12800 series data center switch, Huawei Cloudengine 5800 is a 5800 series data center switch, Huawei Cloudengine 6800 is a 6800 series data center switch, Huawei Cloudengine 6800 is a 6800 series data center switch, Huawei Cloudengine 6800 is a 6800 series data cente...

Memory Leak Vulnerability in Huawei Products (huawei-sa-20211208-01-memleak)

There is a memory leak vulnerability in Huawei products. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you...

CVE-2021-40008

There is a memory leak vulnerability in CloudEngine 12800 V200R019C00SPC800, CloudEngine 5800 V200R019C00SPC800, CloudEngine 6800 V200R019C00SPC800 and CloudEngine 7800 V200R019C00SPC800. The software does not sufficiently track and release allocated memory while parse a series of crafted binary...

CVE-2021-40008

There is a memory leak vulnerability in CloudEngine 12800 V200R019C00SPC800, CloudEngine 5800 V200R019C00SPC800, CloudEngine 6800 V200R019C00SPC800 and CloudEngine 7800 V200R019C00SPC800. The software does not sufficiently track and release allocated memory while parse a series of crafted binary...

Memory corruption

There is a memory leak vulnerability in CloudEngine 12800 V200R019C00SPC800, CloudEngine 5800 V200R019C00SPC800, CloudEngine 6800 V200R019C00SPC800 and CloudEngine 7800 V200R019C00SPC800. The software does not sufficiently track and release allocated memory while parse a series of crafted binary...

CVE-2021-40008

Huawei CloudEngine switches (12800/5800/6800/7800, firmware version V200R019C00SPC800) suffer a memory-leak vulnerability: the parser fails to properly track and release memory when handling crafted binary messages, potentially leading to memory exhaustion. The issue is network-exploitable (low a...

CVE-2021-40008

There is a memory leak vulnerability in CloudEngine 12800 V200R019C00SPC800, CloudEngine 5800 V200R019C00SPC800, CloudEngine 6800 V200R019C00SPC800 and CloudEngine 7800 V200R019C00SPC800. The software does not sufficiently track and release allocated memory while parse a series of crafted binary...

Huawei product memory leak vulnerability

Huawei CloudEngine is a data center switch from Huawei, a Chinese company. Huawei products are vulnerable to a memory leak that could be exploited by an attacker to cause a memory exhaustion...

Vulnerability fixed in Huawei CloudEngine

Huawei has fixed a vulnerability in their CloudEngine series of switches. An unauthenticated malicious person on the same network can exploit the vulnerability to cause a denial-of-service cause. Huawei has released updates to fix the vulnerability in CloudEngine. For more information, see:...

Huawei CloudEngine 安全漏洞

Huawei CloudEngine is a data center switch from Huawei, a Chinese company. Huawei products are vulnerable to a memory leak that could be exploited by an attacker to cause a memory exhaustion...

Huawei Data Communication: Use-after-free Vulnerability in Huawei Products (huawei-sa-20211008-01-cloudengine)

There is a use-after-free UAF vulnerability in Huawei products. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free softwar...

Huawei Data Communication: Privilege Escalation Vulnerability in Huawei Product (huawei-sa-20211103-01-privilege)

There is a privilege escalation vulnerability in some Huawei products. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...

CVE-2021-39976

There is a privilege escalation vulnerability in CloudEngine 5800 V200R020C00SPC600. Due to lack of privilege restrictions, an authenticated local attacker can perform specific operation to exploit this vulnerability. Successful exploitation may cause the attacker to obtain a higher privilege...

CVE-2021-39976

There is a privilege escalation vulnerability in CloudEngine 5800 V200R020C00SPC600. Due to lack of privilege restrictions, an authenticated local attacker can perform specific operation to exploit this vulnerability. Successful exploitation may cause the attacker to obtain a higher privilege...

Privilege escalation

There is a privilege escalation vulnerability in CloudEngine 5800 V200R020C00SPC600. Due to lack of privilege restrictions, an authenticated local attacker can perform specific operation to exploit this vulnerability. Successful exploitation may cause the attacker to obtain a higher privilege...

CVE-2021-39976

There is a privilege escalation vulnerability in CloudEngine 5800 V200R020C00SPC600. Due to lack of privilege restrictions, an authenticated local attacker can perform specific operation to exploit this vulnerability. Successful exploitation may cause the attacker to obtain a higher privilege...

CVE-2021-39976

CVE-2021-39976 affects Huawei CloudEngine 5800 firmware (V200R020C00SPC600). The issue is a privilege escalation due to lack of privilege restrictions, allowing an authenticated local attacker to gain higher privileges. Impact is described as complete on confidentiality, integrity, and availabili...

Huawei CloudEngine Resource Management Error Vulnerability

Huawei CloudEngine is a data center switch from Huawei China. Huawei CloudEngine is vulnerable to a resource management error, which can be exploited by attackers to cause a service exception by sending a specific tampered message...

Huawei Cloudengine 5800 Privilege Permission and Access Control Issue Vulnerability

The Huawei Cloudengine 5800 is a 5800 series data center switch from Huawei of China.The Huawei Cloudengine 5800 is vulnerable to a privilege permission and access control issue, which stems from a lack of privilege restrictions, and an authenticated local attacker could perform specific actions ...

Huawei Cloudengine 5800 安全漏洞

The Huawei Cloudengine 5800 is a 5800 series data center switch from Huawei of China.The Huawei Cloudengine 5800 is vulnerable to a privilege permission and access control issue, which stems from a lack of privilege restrictions, and an authenticated local attacker could perform specific actions ...