CVE-2021-39976
First published: Tue Nov 23 2021(Updated: )
There is a privilege escalation vulnerability in CloudEngine 5800 V200R020C00SPC600. Due to lack of privilege restrictions, an authenticated local attacker can perform specific operation to exploit this vulnerability. Successful exploitation may cause the attacker to obtain a higher privilege.
Credit: psirt@huawei.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Huawei Cloudengine 5800 Firmware | =v200r020c00spc600 | |
| Huawei CloudEngine 5800 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID?
The vulnerability ID is CVE-2021-39976.
What is the severity of CVE-2021-39976?
The severity of CVE-2021-39976 is high, with a CVSS score of 7.8.
What is the affected software?
The affected software is Huawei CloudEngine 5800 Firmware, version v200r020c00spc600.
How does the vulnerability occur?
The vulnerability occurs due to a lack of privilege restrictions in the CloudEngine 5800 V200R020C00SPC600 firmware.
What is the impact of the vulnerability?
Successful exploitation of the vulnerability may allow an authenticated local attacker to obtain higher privileges.
- collector/nvd-index
- agent/severity
- agent/references
- agent/author
- agent/description
- agent/type
- agent/event
- agent/first-publish-date
- agent/softwarecombine
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/huawei
- canonical/huawei cloudengine 5800 firmware
- version/huawei cloudengine 5800 firmware/v200r020c00spc600
- canonical/huawei cloudengine 5800