CVE-2019-5248

HIGH

CloudEngine 12800 - DoS

Title source: llm

Description

CloudEngine 12800 has a DoS vulnerability. An attacker of a neighboring device sends a large number of specific packets. As a result, a memory leak occurs after the device uses the specific packet. As a result, the attacker can exploit this vulnerability to cause DoS attacks on the target device.

References (1)

[Vendor Advisory] http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191204-03-dos-en

Scores

CVSS v3 7.4

EPSS 0.0012

EPSS Percentile 30.4%

Attack Vector ADJACENT_NETWORK

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

Classification

CWE

CWE-401

Status published

Affected Products (5)

huawei/cloudengine_12800_firmware

Timeline

Published Dec 13, 2019

Tracked Since Feb 18, 2026