Lucene search

Huawei TechnologiesHUAWEI-SA-20210428-02-DOS

HistoryApr 28, 2021 - 12:00 a.m.

Security Advisory - Denial of Service Vulnerability in Some Huawei Products

2021-04-2800:00:00

Huawei Technologies

www.huawei.com

3.5 Low

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:S/C:N/I:N/A:P

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

0.001 Low

EPSS

Percentile

28.7%

JSON

There is a denial of service vulnerability in some huawei products. There is a logic error in the implementation of a function of a module. When the service pressure is heavy, there is a low probability that an exception may occur. Successful exploit may cause some services abnormal. (Vulnerability ID: HWPSIRT-2020-77494)

This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2021-22409.

Huawei has released software updates to fix this vulnerability. This advisory is available at the following link:

<http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20210428-02-dos-en>

Affected configurations

Vulners

Node

huaweimanageoneMatch6.5.0

huaweimanageoneMatch6.5.0.spc100.b210

huaweimanageoneMatch6.5.1.1.b010

huaweimanageoneMatch6.5.1.1.b020

huaweimanageoneMatch6.5.1.1.b030

huaweimanageoneMatch6.5.1.1.b040

huaweimanageoneMatch6.5.1.spc100.b050

huaweimanageoneMatch6.5.1.spc101.b010

huaweimanageoneMatch6.5.1.spc101.b040

huaweimanageoneMatch6.5.1.spc200

huaweimanageoneMatch6.5.1.spc200.b010

huaweimanageoneMatch6.5.1.spc200.b030

huaweimanageoneMatch6.5.1.spc200.b040

huaweimanageoneMatch6.5.1.spc200.b050

huaweimanageoneMatch6.5.1.spc200.b060

huaweimanageoneMatch6.5.1.spc200.b070

huaweimanageoneMatch6.5.1rc1.b060

huaweimanageoneMatch6.5.1rc1.b080

huaweimanageoneMatch6.5.1rc2.b020

huaweimanageoneMatch6.5.1rc2.b030

huaweimanageoneMatch6.5.1rc2.b040

huaweimanageoneMatch6.5.1rc2.b050

huaweimanageoneMatch6.5.1rc2.b060

huaweimanageoneMatch6.5.1rc2.b070

huaweimanageoneMatch6.5.1rc2.b080

huaweimanageoneMatch6.5.1rc2.b090

huaweimanageoneMatch6.5.rc2.b050

huaweimanageoneMatch8.0.0

huaweimanageoneMatch8.0.0-lcnd81

huaweimanageoneMatch8.0.0.spc100

huaweimanageoneMatch8.0.1

huaweimanageoneMatch8.0.rc2

huaweimanageoneMatch8.0.rc3

huaweimanageoneMatch8.0.rc3.b041

huaweimanageoneMatch8.0.rc3.spc100

CPENameOperatorVersion
manageoneeq6.5.0
manageoneeq6.5.0.SPC100.B210
manageoneeq6.5.1.1.B010
manageoneeq6.5.1.1.B020
manageoneeq6.5.1.1.B030
manageoneeq6.5.1.1.B040
manageoneeq6.5.1.SPC100.B050
manageoneeq6.5.1.SPC101.B010
manageoneeq6.5.1.SPC101.B040
manageoneeq6.5.1.SPC200

Name	Operator	Version
manageone	eq	6.5.0
manageone	eq	6.5.0.SPC100.B210
manageone	eq	6.5.1.1.B010
manageone	eq	6.5.1.1.B020
manageone	eq	6.5.1.1.B030
manageone	eq	6.5.1.1.B040
manageone	eq	6.5.1.SPC100.B050
manageone	eq	6.5.1.SPC101.B010
manageone	eq	6.5.1.SPC101.B040
manageone	eq	6.5.1.SPC200

Rows per page:

1-10 of 351

3.5 Low

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:S/C:N/I:N/A:P

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

0.001 Low

EPSS

Percentile

28.7%

JSON

Related for HUAWEI-SA-20210428-02-DOS