CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 0CVE-2021-40007
https://notcve.org/view.php?id=CVE-2021-40007
13 Dec 2021 — There is an information leak vulnerability in eCNS280_TD V100R005C10SPC650. The vulnerability is caused by improper log output management. An attacker with the ability to access the log file of device may lead to information disclosure. Se presenta una vulnerabilidad de filtrado de información en eCNS280_TD V100R005C10SPC650. La vulnerabilidad está causada por una administración inapropiada de la salida del registro. • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20211208-01-informationleak-en • CWE-116: Improper Encoding or Escaping of Output •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2021-22363
https://notcve.org/view.php?id=CVE-2021-22363
22 Jun 2021 — There is a resource management error vulnerability in eCNS280_TD V100R005C10SPC650. An attacker needs to perform specific operations to exploit the vulnerability on the affected device. Due to improper resource management of the function, the vulnerability can be exploited to cause service abnormal on affected devices. Se presenta una vulnerabilidad de error de administración de recursos en eCNS280_TD V100R005C10SPC650. Un atacante necesita llevar a cabo operaciones específicas para explotar la vulnerabilid... • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20210609-01-resource-en • CWE-770: Allocation of Resources Without Limits or Throttling •