HIGH🇬🇧 English

CVE-2021-39976

CVSS 7.8v3.1pub. 2021-11-23upd. 2024-11-21

There is a privilege escalation vulnerability in CloudEngine 5800 V200R020C00SPC600. Due to lack of privilege restrictions, an authenticated local attacker can perform specific operation to exploit this vulnerability. Successful exploitation may cause the attacker to obtain a higher privilege.

oryginał EN
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
  • Huawei Cloudengine 5800

    HW
    Huawei
    wszystkie wersje
  • Huawei Cloudengine 5800 Firmware

    OS
    Huawei
    v200r020c00spc600
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
LPE
CWE
Referencje

Powiązane podatności

CVE-2017-17301CRITICAL9.8ten sam produkt

Huawei AR120-S V200R005C32, V200R006C10, V200R007C00, V200R008C20, AR1200 V200R005C20, V200R005C32, V200R006C1...

CVE-2021-40008HIGH7.5ten sam produkt

There is a memory leak vulnerability in CloudEngine 12800 V200R019C00SPC800, CloudEngine 5800 V200R019C00SPC80...

CVE-2021-22328HIGH7.5ten sam produkt

There is a denial of service vulnerability in some huawei products. In specific scenarios, due to the improper...

CVE-2021-22393HIGH7.5ten sam produkt

There is a denial of service vulnerability in some versions of CloudEngine 5800, CloudEngine 6800, CloudEngine...

CVE-2021-22332HIGH7.5ten sam produkt

There is a pointer double free vulnerability in some versions of CloudEngine 5800, CloudEngine 6800, CloudEngi...