CVE-2021-22328

There is a denial of service vulnerability in some huawei products. In specific scenarios, due to the improper handling of the packets, an attacker may craft the specific packet. Successful exploit may cause some services abnormal. Affected product versions include:CloudEngine 12800 V200R005C00SPC800, CloudEngine 5800 V200R005C00SPC800, CloudEngine 6800 V200R005C00SPC800, CloudEngine 7800 V200R005C00SPC800.

Published: Aug 23, 2021
Updated: Apr 14, 2023
CVE: CVE-2021-22328
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.5
AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:N/I:N/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
huawei / cloudengine_12800_firmware	200r005c00spc800	200r005c00spc800.x
huawei / cloudengine_5800_firmware	200r005c00spc800	200r005c00spc800.x
huawei / cloudengine_6800_firmware	200r005c00spc800	200r005c00spc800.x
huawei / cloudengine_7800_firmware	200r005c00spc800	200r005c00spc800.x

https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20210407-01-dos-en

Vulnerability Database

289,599

CVE-2021-22328