CVE-2020-9124
First published: Tue Dec 29 2020(Updated: )
There is a memory leak vulnerability in some versions of Huawei CloudEngine product. An unauthenticated, remote attacker may exploit this vulnerability by sending specific message to the affected product. Due to not release the allocated memory properly, successful exploit may cause memory leak.
Credit: psirt@huawei.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Huawei Cloudengine 12800 Firmware | =v200r002c50spc800 | |
| Huawei Cloudengine 12800 Firmware | =v200r003c00spc810 | |
| Huawei Cloudengine 12800 Firmware | =v200r005c00spc800 | |
| Huawei Cloudengine 12800 Firmware | =v200r005c10spc800 | |
| Huawei CloudEngine 12800 | ||
| Huawei Cloudengine 5800 Firmware | =v200r002c50spc800 | |
| Huawei Cloudengine 5800 Firmware | =v200r003c00spc810 | |
| Huawei Cloudengine 5800 Firmware | =v200r005c00spc800 | |
| Huawei Cloudengine 5800 Firmware | =v200r005c10spc800 | |
| Huawei CloudEngine 5800 | ||
| Huawei Cloudengine 6800 Firmware | =v200r002c50spc800 | |
| Huawei Cloudengine 6800 Firmware | =v200r003c00spc810 | |
| Huawei Cloudengine 6800 Firmware | =v200r005c00spc800 | |
| Huawei Cloudengine 6800 Firmware | =v200r005c10spc800 | |
| Huawei CloudEngine 6800 | ||
| Huawei Cloudengine 7800 Firmware | =v200r002c50spc800 | |
| Huawei Cloudengine 7800 Firmware | =v200r003c00spc810 | |
| Huawei Cloudengine 7800 Firmware | =v200r005c00spc800 | |
| Huawei Cloudengine 7800 Firmware | =v200r005c10spc800 | |
| Huawei Cloudengine 7800 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID of this memory leak vulnerability in Huawei CloudEngine product?
The vulnerability ID is CVE-2020-9124.
What is the severity level of CVE-2020-9124?
The severity level of CVE-2020-9124 is high with a score of 7.5.
Which versions of Huawei CloudEngine product are affected by CVE-2020-9124?
Versions v200r002c50spc800, v200r003c00spc810, v200r005c00spc800, and v200r005c10spc800 of Huawei CloudEngine product are affected by CVE-2020-9124.
How can an attacker exploit CVE-2020-9124?
An unauthenticated, remote attacker can exploit CVE-2020-9124 by sending a specific message to the affected Huawei CloudEngine product.
What is the impact of successfully exploiting CVE-2020-9124?
Successful exploitation of CVE-2020-9124 can cause a memory leak in the affected product.
- collector/nvd-index
- agent/weakness
- agent/author
- agent/type
- agent/severity
- agent/references
- agent/description
- agent/event
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/huawei
- canonical/huawei cloudengine 12800 firmware
- version/huawei cloudengine 12800 firmware/v200r002c50spc800
- version/huawei cloudengine 12800 firmware/v200r003c00spc810
- version/huawei cloudengine 12800 firmware/v200r005c00spc800
- version/huawei cloudengine 12800 firmware/v200r005c10spc800
- canonical/huawei cloudengine 12800
- canonical/huawei cloudengine 5800 firmware
- version/huawei cloudengine 5800 firmware/v200r002c50spc800
- version/huawei cloudengine 5800 firmware/v200r003c00spc810
- version/huawei cloudengine 5800 firmware/v200r005c00spc800
- version/huawei cloudengine 5800 firmware/v200r005c10spc800
- canonical/huawei cloudengine 5800
- canonical/huawei cloudengine 6800 firmware
- version/huawei cloudengine 6800 firmware/v200r002c50spc800
- version/huawei cloudengine 6800 firmware/v200r003c00spc810
- version/huawei cloudengine 6800 firmware/v200r005c00spc800
- version/huawei cloudengine 6800 firmware/v200r005c10spc800
- canonical/huawei cloudengine 6800
- canonical/huawei cloudengine 7800 firmware
- version/huawei cloudengine 7800 firmware/v200r002c50spc800
- version/huawei cloudengine 7800 firmware/v200r003c00spc810
- version/huawei cloudengine 7800 firmware/v200r005c00spc800
- version/huawei cloudengine 7800 firmware/v200r005c10spc800
- canonical/huawei cloudengine 7800