Out-of-bounds Read Vulnerability in Huawei eSE620X Product
CVE-2021-22366

5.5MEDIUM

Key Information:

Vendor: Huawei
Status: Ese620x Vess
Vendor: CVE Published:; 22 June 2021

What is CVE-2021-22366?

An out-of-bounds read vulnerability exists in Huawei's eSE620X. This flaw occurs in the handling of internal messages, potentially allowing an attacker to exploit the vulnerability through crafted messages. Successful exploitation could lead to a Denial of Service (DoS), affecting the availability and stability of the affected products including multiple versions of the eSE620X.

Affected Version(s)

eSE620X vESS V100R001C10SPC200,V100R001C20SPC200,V200R001C00SPC300

References

https://www.huawei.com/en/psirt/security-advisories/huawe...

x_refsource_MISC

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 22, 2021
Vulnerability Reserved
Jan 5, 2021