Huawei NE20E-S, NE40E-M, and NE40E-M2 routers with software before V800R007C10SPC100 and NE40E and NE80E routers with software before V800R007C00SPC100 allows remote attackers to send packets to other VPNs and conduct flooding attacks via a crafted MPLS forwarding packet, aka a “VPN routing and forwarding (VRF) hopping vulnerability.”
CPE | Name | Operator | Version |
---|---|---|---|
ne_router_software | eq | <= v800r6 | |
ne_router_software | eq | <= v800r7c0 | |
ne_router_software | eq | <= v800r6 |