CVE-2021-22362
Last modified
CVE-2021-22362 is a medium-severity vulnerability rated 5.3/10 on the CVSS scale. There is an out of bounds write vulnerability in some Huawei products. An attacker can exploit this vulnerability by sending crafted data in the packet to the target device. EPSS estimates a 0.69% chance of exploitation in the next 30 days.
Description
There is an out of bounds write vulnerability in some Huawei products. An attacker can exploit this vulnerability by sending crafted data in the packet to the target device. Due to insufficient validation of message, successful exploit can cause certain service abnormal.Affected product versions include:CloudEngine 12800 versions V200R002C50SPC800,V200R003C00SPC810,V200R005C00SPC800,V200R005C10SPC800,V200R019C00SPC800,V200R019C10SPC800;CloudEngine 5800 versions V200R002C50SPC800,V200R003C00SPC810,V200R005C00SPC800,V200R005C10SPC800,V200R019C00SPC800,V200R019C10SPC800@;CloudEngine 6800 versions V200R002C50SPC800,V200R003C00SPC810,V200R005C00SPC800,V200R005C10SPC800,V200R005C20SPC800,V200R019C00SPC800,V200R019C10SPC800;CloudEngine 7800 versions V200R002C50SPC800,V200R003C00SPC810,V200R005C00SPC800,V200R005C10SPC800,V200R019C00SPC800,V200R019C10SPC800.
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Huawei | Cloudengine 12800 Firmware | v200r002c50spc800 |
| Huawei | Cloudengine 12800 Firmware | v200r003c00spc810 |
| Huawei | Cloudengine 12800 Firmware | v200r005c00spc800 |
| Huawei | Cloudengine 12800 Firmware | v200r005c10spc800 |
| Huawei | Cloudengine 12800 Firmware | v200r019c00spc800 |
| Huawei | Cloudengine 12800 Firmware | v200r019c10spc800 |
| Huawei | Cloudengine 5800 Firmware | v200r002c50spc800 |
| Huawei | Cloudengine 5800 Firmware | v200r003c00spc810 |
| Huawei | Cloudengine 5800 Firmware | v200r005c00spc800 |
| Huawei | Cloudengine 5800 Firmware | v200r005c10spc800 |
| Huawei | Cloudengine 5800 Firmware | v200r019c00spc800 |
| Huawei | Cloudengine 5800 Firmware | v200r019c10spc800 |
| Huawei | Cloudengine 6800 Firmware | v200r002c50spc800 |
| Huawei | Cloudengine 6800 Firmware | v200r003c00spc810 |
| Huawei | Cloudengine 6800 Firmware | v200r005c00spc800 |
| Huawei | Cloudengine 6800 Firmware | v200r005c10spc800 |
| Huawei | Cloudengine 6800 Firmware | v200r005c20spc800 |
| Huawei | Cloudengine 6800 Firmware | v200r019c00spc800 |
| Huawei | Cloudengine 6800 Firmware | v200r019c10spc800 |
| Huawei | Cloudengine 7800 Firmware | v200r002c50spc800 |
| Huawei | Cloudengine 7800 Firmware | v200r003c00spc810 |
| Huawei | Cloudengine 7800 Firmware | v200r005c00spc800 |
| Huawei | Cloudengine 7800 Firmware | v200r005c10spc800 |
| Huawei | Cloudengine 7800 Firmware | v200r019c00spc800 |
| Huawei | Cloudengine 7800 Firmware | v200r019c10spc800 |
References
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2021-22362?
How severe is CVE-2021-22362?
How do I fix CVE-2021-22362?
Are you affected by CVE-2021-22362?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST