Test ID:	1.3.6.1.4.1.25623.1.0.151444
Category:	Huawei
Title:	Out-of-Bounds Read Vulnerability in Huawei CloudEngine Products (huawei-sa-20201230-02-cloudengine)
Summary:	There is an out-of-bounds read vulnerability in Huawei; CloudEngine products.
Description:	Summary: There is an out-of-bounds read vulnerability in Huawei CloudEngine products. Vulnerability Insight: The software reads data past the end of the intended buffer when parsing certain PIM message, an adjacent attacker could send crafted PIM messages to the device. Vulnerability Impact: A successful exploit could cause out of bounds read when the system does the certain operation. Affected Software/OS: CloudEngine 12800 versions V200R002C50SPC800, V200R003C00SPC810, V200R005C00SPC800, V200R005C10SPC800, V200R019C00SPC800, V200R019C10SPC800 CloudEngine 5800 versions V200R002C50SPC800, V200R003C00SPC810, V200R005C00SPC800, V200R005C10SPC800, V200R019C00SPC800, V200R019C10SPC800 CloudEngine 6800 versions V200R002C50SPC800, V200R003C00SPC810, V200R005C00SPC800, V200R005C10SPC800, V200R005C20SPC800, V200R019C00SPC800, V200R019C10SPC800 CloudEngine 7800 versions V200R002C50SPC800, V200R003C00SPC810, V200R005C00SPC800, V200R005C10SPC800, V200R019C00SPC800, V200R019C10SPC800 Solution: See the referenced vendor advisory for a solution. CVSS Score: 3.3 CVSS Vector: AV:A/AC:L/Au:N/C:P/I:N/A:N
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2020-1865 https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20201230-02-cloudengine-en
Copyright	Copyright (C) 2023 Greenbone AG

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.