License Management Issue in Huawei Network Products
CVE-2021-22329

4.9MEDIUM

Key Information:

Vendor
Huawei
Vendor
CVE Published:
29 June 2021

Summary

A license management flaw exists in several Huawei network products that allows high-privileged attackers to potentially exploit the vulnerability by performing specific operations. Due to improper handling of the license files, an attacker may influence the integrity of the device, ultimately leading to security risks. Users of the affected products should consult security advisories and apply necessary mitigations to safeguard their systems.

Affected Version(s)

S12700;S1700;S2700;S5700;S6700;S7700;S9700 V200R007C01,V200R007C01B102,V200R008C00,V200R010C00SPC300,V200R011C00,V200R011C00SPC100,V200R011C10

S12700;S1700;S2700;S5700;S6700;S7700;S9700 V200R010C00SPC300,V200R011C00,V200R011C00SPC100,V200R011C10

S12700;S1700;S2700;S5700;S6700;S7700;S9700 V200R008C00,V200R010C00SPC300,V200R011C00,V200R011C00SPC100,V200R011C10

References

CVSS V3.1

Score:
4.9
Severity:
MEDIUM
Confidentiality:
None
Integrity:
High
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
High
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.