CVE-2021-40008
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
There is a memory leak vulnerability in CloudEngine 12800 V200R019C00SPC800, CloudEngine 5800 V200R019C00SPC800, CloudEngine 6800 V200R019C00SPC800 and CloudEngine 7800 V200R019C00SPC800. The software does not sufficiently track and release allocated memory while parse a series of crafted binary messages, which could consume remaining memory. Successful exploit could cause memory exhaust.
Se presenta una vulnerabilidad de filtrado de memoria en CloudEngine 12800 V200R019C00SPC800, CloudEngine 5800 V200R019C00SPC800, CloudEngine 6800 V200R019C00SPC800 y CloudEngine 7800 V200R019C00SPC800. El software no rastrea y libera suficientemente la memoria asignada mientras analiza una serie de mensajes binarios elaborados, lo que podría consumir la memoria restante. Una explotación con éxito podría causar el agotamiento de la memoria
CVSS Scores
SSVC
- Decision:-
Timeline
- 2021-08-23 CVE Reserved
- 2021-12-13 CVE Published
- 2024-08-04 CVE Updated
- 2024-08-28 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-772: Missing Release of Resource after Effective Lifetime
CAPEC
References (1)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20211208-01-memleak-en | 2021-12-15 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Huawei Search vendor "Huawei" | Cloudengine 7800 Firmware Search vendor "Huawei" for product "Cloudengine 7800 Firmware" | v200r019c00spc800 Search vendor "Huawei" for product "Cloudengine 7800 Firmware" and version "v200r019c00spc800" | - |
Affected
| in | Huawei Search vendor "Huawei" | Cloudengine 7800 Search vendor "Huawei" for product "Cloudengine 7800" | - | - |
Safe
|
| Huawei Search vendor "Huawei" | Cloudengine 6800 Firmware Search vendor "Huawei" for product "Cloudengine 6800 Firmware" | v200r019c00spc800 Search vendor "Huawei" for product "Cloudengine 6800 Firmware" and version "v200r019c00spc800" | - |
Affected
| in | Huawei Search vendor "Huawei" | Cloudengine 6800 Search vendor "Huawei" for product "Cloudengine 6800" | - | - |
Safe
|
| Huawei Search vendor "Huawei" | Cloudengine 5800 Firmware Search vendor "Huawei" for product "Cloudengine 5800 Firmware" | v200r019c00spc800 Search vendor "Huawei" for product "Cloudengine 5800 Firmware" and version "v200r019c00spc800" | - |
Affected
| in | Huawei Search vendor "Huawei" | Cloudengine 5800 Search vendor "Huawei" for product "Cloudengine 5800" | - | - |
Safe
|
| Huawei Search vendor "Huawei" | Cloudengine 12800 Firmware Search vendor "Huawei" for product "Cloudengine 12800 Firmware" | v200r019c00spc800 Search vendor "Huawei" for product "Cloudengine 12800 Firmware" and version "v200r019c00spc800" | - |
Affected
| in | Huawei Search vendor "Huawei" | Cloudengine 12800 Search vendor "Huawei" for product "Cloudengine 12800" | - | - |
Safe
|