CVE-2021-39995— Huawei eCNS280_TD 缓冲区错误漏洞

N/A

Some Huawei products use the OpenHpi software for hardware management. A function that parses data returned by OpenHpi contains an out-of-bounds read vulnerability that could lead to a denial of service. Affected product versions include: eCNS280_TD V100R005C10; eSE620X vESS V100R001C10SPC200, V100R001C20SPC200, V200R001C00SPC300.

N/A

N/A

Huawei eCNS280_TD 缓冲区错误漏洞

Huawei eCNS280_TD是中国华为（Huawei）公司的无线宽带集群系统的核心网设备。基于网络功能虚拟化(Network Functions Virtualization，NFV)和云化架构设计，提供传统核心网的网络功能外，还通过将网元功能虚拟化、在多网元间共享标准化硬件资源，来给各网元提供可根据实际应用的容量配置，提高网络扩容减容效率，提升业务上线效率。 Huawei ESE620X vESS和eCNS280_TD 存在缓冲区错误漏洞，该漏洞源于解析 OpenHpi 返回的数据的函数包含可能导

N/A

N/A