CVE-2019-5248

CWE-401 — Memory Leak CWE-7723 documents3 sources

Severity

7.4HIGH

EPSS

0.1%

top 69.48%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Huawei Cloudengine 12800 Firmware

Timeline

PublishedDec 13

Latest updateMay 24

Description

CloudEngine 12800 has a DoS vulnerability. An attacker of a neighboring device sends a large number of specific packets. As a result, a memory leak occurs after the device uses the specific packet. As a result, the attacker can exploit this vulnerability to cause DoS attacks on the target device.

CVSS vector

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:HExploitability: 2.8 | Impact: 4.0

Affected Packages2 packages

▶CVEListV5cloudengine_128005 versions+4

▶NVDhuawei/cloudengine_12800_firmware5 versions+4

🔴Vulnerability Details

GHSA

GHSA-v3rj-h6w7-8v5m: CloudEngine 12800 has a DoS vulnerability↗2022-05-24

▶

CVEList

CVE-2019-5248: CloudEngine 12800 has a DoS vulnerability↗2019-12-13

▶