Vulnerability Database

289,689

Total vulnerabilities in the database

CVE-2021-22293

Some Huawei products have an inconsistent interpretation of HTTP requests vulnerability. Attackers can exploit this vulnerability to cause information leak. Affected product versions include: CampusInsight versions V100R019C10; ManageOne versions 6.5.1.1, 6.5.1.SPC100, 6.5.1.SPC200, 6.5.1RC1, 6.5.1RC2, 8.0.RC2. Affected product versions include: Taurus-AL00A versions 10.0.0.1(C00E1R1P1).

  • Published: Feb 6, 2021
  • Updated: Apr 14, 2023
  • CVE: CVE-2021-22293
  • Severity: High
  • Exploit:

CVSS v3:

  • Severity: High
  • Score: 7.5
  • AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CVSS v2:

  • Severity: Medium
  • Score: 5
  • AV:N/AC:L/Au:N/C:P/I:N/A:N

CWEs:

Software From Fixed in
huawei / manageone 8.0.0-rc2 8.0.0-rc2.x
huawei / manageone 6.5.1.1-spc100 6.5.1.1-spc100.x
huawei / manageone 6.5.1.1-spc200 6.5.1.1-spc200.x
huawei / manageone 6.5.1.1 6.5.1.1.x
huawei / manageone 6.5.1.1-rc1 6.5.1.1-rc1.x
huawei / manageone 6.5.1.1-rc2 6.5.1.1-rc2.x
huawei / campusinsight 100r019c10 100r019c10.x
huawei / taurus-al00a_firmware 10.0.0.1(c00e1r1p1) 10.0.0.1(c00e1r1p1).x