Cloudengine 7800 Firmware@v200r019c00spc800 Security Vulnerabilities and Issues — Cloudengine 7800 Firmware@v200r019c00spc800 CVE List

Lucene search

HuaweiCloudengine 7800 Firmwarev200r019c00spc800

9 matches found

CVE•added 2020/12/24 4:15 p.m.•57 views

CVE-2020-9137

There is a privilege escalation vulnerability in some versions of CloudEngine 12800,CloudEngine 5800,CloudEngine 6800 and CloudEngine 7800. Due to insufficient input validation, a local attacker with high privilege may execute some specially crafted scripts in the affected products. Successful expl...

6.7CVSS6.5AI score0.00026EPSS

CVE•added 2021/05/27 1:15 p.m.•52 views

CVE-2021-22362

There is an out of bounds write vulnerability in some Huawei products. An attacker can exploit this vulnerability by sending crafted data in the packet to the target device. Due to insufficient validation of message, successful exploit can cause certain service abnormal.Affected product versions in...

5.3CVSS5.3AI score0.00176EPSS

CVE•added 2022/01/31 4:15 p.m.•51 views

CVE-2021-40033

There is an information exposure vulnerability on several Huawei Products. The vulnerability is due to that the software does not properly protect certain information. Successful exploit could cause information disclosure. Affected product versions include: CloudEngine 12800 V200R005C10SPC800; Clou...

5.5CVSS5.1AI score0.00028EPSS

CVE•added 2021/10/27 1:15 a.m.•49 views

CVE-2021-37122

There is a use-after-free (UAF) vulnerability in Huawei products. An attacker may craft specific packets to exploit this vulnerability. Successful exploitation may cause the service abnormal. Affected product versions include:CloudEngine 12800 V200R005C10SPC800,V200R019C00SPC800;CloudEngine 5800 V2...

6.5CVSS6.3AI score0.00059EPSS

CVE•added 2020/07/17 11:15 p.m.•43 views

CVE-2020-9102

There is a information leak vulnerability in some Huawei products, and it could allow a local attacker to get information. The vulnerability is due to the improper management of the username. An attacker with the ability to access the device and cause the username information leak. Affected product...

3.3CVSS3.8AI score0.00023EPSS

CVE•added 2020/12/29 6:15 p.m.•40 views

CVE-2020-9207

There is an improper authentication vulnerability in some verisons of Huawei CloudEngine product. A module does not verify the input file properly. Attackers can exploit this vulnerability by crafting malicious files to bypass current verification mechanism. This can compromise normal service.

7.8CVSS7.7AI score0.00083EPSS

CVE•added 2021/01/13 11:15 p.m.•38 views

CVE-2020-1865

There is an out-of-bounds read vulnerability in Huawei CloudEngine products. The software reads data past the end of the intended buffer when parsing certain PIM message, an adjacent attacker could send crafted PIM messages to the device, successful exploit could cause out of bounds read when the s...

6.5CVSS6.4AI score0.00044EPSS

CVE•added 2020/12/29 6:15 p.m.•36 views

CVE-2020-9094

There is an out of bound read vulnerability in some verisons of Huawei CloudEngine product. A module does not deal with specific message properly. Attackers can exploit this vulnerability by sending malicious packet. This can lead to denial of service.

7.5CVSS7.3AI score0.00182EPSS

CVE•added 2021/12/13 4:15 p.m.•34 views

CVE-2021-40008

There is a memory leak vulnerability in CloudEngine 12800 V200R019C00SPC800, CloudEngine 5800 V200R019C00SPC800, CloudEngine 6800 V200R019C00SPC800 and CloudEngine 7800 V200R019C00SPC800. The software does not sufficiently track and release allocated memory while parse a series of crafted binary me...

7.5CVSS7.4AI score0.00182EPSS