Vulnerability Details CVE-2021-40042
There is a release of invalid pointer vulnerability in some Huawei products, successful exploit may cause the process and service abnormal. Affected product versions include: CloudEngine 12800 V200R019C10SPC800, V200R019C10SPC900; CloudEngine 5800 V200R019C10SPC800, V200R020C00SPC600; CloudEngine 6800 versions V200R019C10SPC800, V200R019C10SPC900, V200R020C00SPC600, V300R020C00SPC200; CloudEngine 7800 V200R019C10SPC800.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 39.8%
CVSS Severity
CVSS v3 Score 6.5
CVSS v2 Score 4.0
References
Products affected by CVE-2021-40042
-
cpe:2.3:h:huawei:cloudengine_12800:-
-
cpe:2.3:h:huawei:cloudengine_5800:-
-
cpe:2.3:h:huawei:cloudengine_6800:-
-
cpe:2.3:h:huawei:cloudengine_7800:-
-
cpe:2.3:o:huawei:cloudengine_12800_firmware:v200r019c10spc800
-
cpe:2.3:o:huawei:cloudengine_12800_firmware:v200r019c10spc900
-
cpe:2.3:o:huawei:cloudengine_5800_firmware:v200r019c10spc800
-
cpe:2.3:o:huawei:cloudengine_5800_firmware:v200r020c00spc600
-
cpe:2.3:o:huawei:cloudengine_6800_firmware:v200r019c10spc800
-
cpe:2.3:o:huawei:cloudengine_6800_firmware:v200r019c10spc900
-
cpe:2.3:o:huawei:cloudengine_6800_firmware:v200r020c00spc600
-
cpe:2.3:o:huawei:cloudengine_6800_firmware:v300r020c00spc200
-
cpe:2.3:o:huawei:cloudengine_7800_firmware:v200r019c10spc800