Vulnerability Details CVE-2021-39995
Some Huawei products use the OpenHpi software for hardware management. A function that parses data returned by OpenHpi contains an out-of-bounds read vulnerability that could lead to a denial of service. Affected product versions include: eCNS280_TD V100R005C10; eSE620X vESS V100R001C10SPC200, V100R001C20SPC200, V200R001C00SPC300.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 38.2%
CVSS Severity
CVSS v3 Score 6.5
CVSS v2 Score 6.8
References
Products affected by CVE-2021-39995
-
cpe:2.3:h:huawei:ecns280_td:-
-
cpe:2.3:h:huawei:ese620x_vess:-
-
cpe:2.3:o:huawei:ecns280_td_firmware:v100r005c10
-
cpe:2.3:o:huawei:ese620x_vess_firmware:v100r001c10spc200
-
cpe:2.3:o:huawei:ese620x_vess_firmware:v100r001c20spc200
-
cpe:2.3:o:huawei:ese620x_vess_firmware:v200r001c00spc300