CVE-2019-5248

HIGH

7.4

Description

CloudEngine 12800 has a DoS vulnerability. An attacker of a neighboring device sends a large number of specific packets. As a result, a memory leak occurs after the device uses the specific packet. As a result, the attacker can exploit this vulnerability to cause DoS attacks on the target device.

CVE Details

CVSS v3.1 Score7.4

SeverityHIGH

CVSS VectorCVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

Attack VectorADJACENT_NETWORK

ComplexityLOW

Privileges RequiredNONE

User InteractionNONE

Published12/13/2019

Last Modified11/21/2024

Sourcenvd

Honeypot Sightings0

Affected Products

huawei:cloudengine_12800huawei:cloudengine_12800_firmware

Weaknesses (CWE)

CWE-401

References

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191204-03-dos-en(psirt@huawei.com)

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191204-03-dos-en(af854a3a-2127-422b-91ae-364da2661108)

IOC Correlations

No correlations recorded

This product uses data from the NVD API but is not endorsed or certified by the NVD.