Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2021-40033

There is an information exposure vulnerability on several Huawei Products. The vulnerability is due to that the software does not properly protect certain information. Successful exploit could cause information disclosure. Affected product versions include: CloudEngine 12800 V200R005C10SPC800; CloudEngine 5800 V200R005C10SPC800, V200R019C00SPC800; CloudEngine 6800 V200R005C10SPC800, V200R005C20SPC800, V200R019C00SPC800; CloudEngine 7800 V200R005C10SPC800, V200R019C00SPC800.

Published

2022-01-31T16:15:09.923

Last Modified

2024-11-21T06:23:25.600

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 5.5 (MEDIUM)

CVSSv2 Vector

AV:L/AC:L/Au:N/C:P/I:N/A:N

  • Access Vector: LOCAL
  • Access Complexity: LOW
  • Authentication: NONE
  • Confidentiality Impact: PARTIAL
  • Integrity Impact: NONE
  • Availability Impact: NONE
Exploitability Score

3.9

Impact Score

2.9

Weaknesses
  • Type: Primary
    NVD-CWE-noinfo
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Operating System huawei cloudengine_12800_firmware v200r005c10spc800 Yes
Hardware huawei cloudengine_12800 - No
Operating System huawei cloudengine_5800_firmware v200r005c10spc800 Yes
Operating System huawei cloudengine_5800_firmware v200r019c00spc800 Yes
Hardware huawei cloudengine_5800 - No
Operating System huawei cloudengine_6800_firmware v200r005c10spc800 Yes
Operating System huawei cloudengine_6800_firmware v200r005c20spc800 Yes
Operating System huawei cloudengine_6800_firmware v200r019c00spc800 Yes
Hardware huawei cloudengine_6800 - No
Operating System huawei cloudengine_7800_firmware v200r005c10spc800 Yes
Operating System huawei cloudengine_7800_firmware v200r019c00spc800 Yes
Hardware huawei cloudengine_7800 - No
References