CVE-2021-40033
MEDIUMHuawei CloudEngine Multiple Versions - Information Exposure
Title source: llmDescription
There is an information exposure vulnerability on several Huawei Products. The vulnerability is due to that the software does not properly protect certain information. Successful exploit could cause information disclosure. Affected product versions include: CloudEngine 12800 V200R005C10SPC800; CloudEngine 5800 V200R005C10SPC800, V200R019C00SPC800; CloudEngine 6800 V200R005C10SPC800, V200R005C20SPC800, V200R019C00SPC800; CloudEngine 7800 V200R005C10SPC800, V200R019C00SPC800.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_misc
https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20220112-01-infodis-en
Scores
CVSS v3
5.5
EPSS
0.0003
EPSS Percentile
8.4%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Details
Status
published
Products (8)
huawei/cloudengine_12800_firmware
v200r005c10spc800
huawei/cloudengine_5800_firmware
v200r005c10spc800
huawei/cloudengine_5800_firmware
v200r019c00spc800
huawei/cloudengine_6800_firmware
v200r005c10spc800
huawei/cloudengine_6800_firmware
v200r005c20spc800
huawei/cloudengine_6800_firmware
v200r019c00spc800
huawei/cloudengine_7800_firmware
v200r005c10spc800
huawei/cloudengine_7800_firmware
v200r019c00spc800
Published
Jan 31, 2022
Tracked Since
Feb 18, 2026