Buffer overflow

2018-03-0917:29:00

PRIOn knowledge base

www.prio-n.com

4.3 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

Huawei eNSP software with software of versions earlier than V100R002C00B510 has a buffer overflow vulnerability. Due to the improper validation of specific command line parameter, a local attacker could exploit this vulnerability to cause the software process abnormal.

CPENameOperatorVersion
ensp_firmwareeq< v100r2c0b510

CPE	Name	Operator	Version
	ensp_firmware	eq	< v100r2c0b510

References

www.huawei.com/en/psirt/security-advisories/huawei-sa-20180309-01-ensp-en

www.securityfocus.com/bid/103425