← Retour aux CVEs
CVE-2020-9124
HIGH7.5
Description
There is a memory leak vulnerability in some versions of Huawei CloudEngine product. An unauthenticated, remote attacker may exploit this vulnerability by sending specific message to the affected product. Due to not release the allocated memory properly, successful exploit may cause memory leak.
Details CVE
Score CVSS v3.17.5
SeveriteHIGH
Vecteur CVSSCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Vecteur d'attaqueNETWORK
ComplexiteLOW
Privileges requisNONE
Interaction utilisateurNONE
Publie12/29/2020
Derniere modification11/21/2024
Sourcenvd
Observations honeypot0
Produits affectes
huawei:cloudengine_12800huawei:cloudengine_12800_firmwarehuawei:cloudengine_5800huawei:cloudengine_5800_firmwarehuawei:cloudengine_6800huawei:cloudengine_6800_firmwarehuawei:cloudengine_7800huawei:cloudengine_7800_firmware
Faiblesses (CWE)
CWE-401
References
https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20201223-01-cloudengine-en(psirt@huawei.com)
https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20201223-01-cloudengine-en(af854a3a-2127-422b-91ae-364da2661108)
Correlations IOC
Aucune correlation enregistree
This product uses data from the NVD API but is not endorsed or certified by the NVD.