Huawei Cloudengine 5800 vulnerabilities
6 known vulnerabilities affecting huawei/cloudengine_5800.
Total CVEs
6
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH5LOW1
Vulnerabilities
Page 1 of 1
CVE-2021-22393HIGHCVSS 7.5vv200r002c50spc800vv200r003c00spc810+2 more2021-04-28
CVE-2021-22393 [HIGH] CVE-2021-22393: There is a denial of service vulnerability in some versions of CloudEngine 5800, CloudEngine 6800, C
There is a denial of service vulnerability in some versions of CloudEngine 5800, CloudEngine 6800, CloudEngine 7800 and CloudEngine 12800. The affected product cannot deal with some messages because of module design weakness . Attackers can exploit this vulnerability by sending a large amount of specific messages to cause denial of service. This can compromis
nvd
CVE-2020-9124HIGHCVSS 7.5vV200R002C50SPC800vV200R003C00SPC810+2 more2020-12-29
CVE-2020-9124 [HIGH] CWE-401 CVE-2020-9124: There is a memory leak vulnerability in some versions of Huawei CloudEngine product. An unauthentica
There is a memory leak vulnerability in some versions of Huawei CloudEngine product. An unauthenticated, remote attacker may exploit this vulnerability by sending specific message to the affected product. Due to not release the allocated memory properly, successful exploit may cause memory leak.
cvelistv5nvd
CVE-2020-9207HIGHCVSS 7.8vV200R019C00SPC8002020-12-29
CVE-2020-9207 [HIGH] CWE-287 CVE-2020-9207: There is an improper authentication vulnerability in some verisons of Huawei CloudEngine product. A
There is an improper authentication vulnerability in some verisons of Huawei CloudEngine product. A module does not verify the input file properly. Attackers can exploit this vulnerability by crafting malicious files to bypass current verification mechanism. This can compromise normal service.
cvelistv5nvd
CVE-2020-9094HIGHCVSS 7.5vV200R019C00SPC8002020-12-29
CVE-2020-9094 [HIGH] CWE-125 CVE-2020-9094: There is an out of bound read vulnerability in some verisons of Huawei CloudEngine product. A module
There is an out of bound read vulnerability in some verisons of Huawei CloudEngine product. A module does not deal with specific message properly. Attackers can exploit this vulnerability by sending malicious packet. This can lead to denial of service.
cvelistv5nvd
CVE-2020-9102LOWCVSS 3.3vV200R002C50SPC800vV200R003C00SPC810+3 more2020-07-17
CVE-2020-9102 [LOW] CVE-2020-9102: There is a information leak vulnerability in some Huawei products, and it could allow a local attack
There is a information leak vulnerability in some Huawei products, and it could allow a local attacker to get information. The vulnerability is due to the improper management of the username. An attacker with the ability to access the device and cause the username information leak. Affected product versions include: CloudEngine 12800 versions V200R002C50SPC800,
cvelistv5nvd
CVE-2020-1870HIGHCVSS 7.5vV200R019C00SPC8002020-05-29
CVE-2020-1870 [HIGH] CWE-772 CVE-2020-1870: There is a denial of service vulnerability in some Huawei products. Due to improper memory managemen
There is a denial of service vulnerability in some Huawei products. Due to improper memory management, memory leakage may occur in some special cases. Attackers can perform a series of operations to exploit this vulnerability. Successful exploit may cause a denial of service. Affected product versions include: CloudEngine 12800 versions V200R019C00SPC80
cvelistv5nvd