5.3

CVE-2021-22321

There is a use-after-free vulnerability in a Huawei product. A module cannot deal with specific operations in special scenarios. Attackers can exploit this vulnerability by performing malicious operations. This can cause memory use-after-free, compromising normal service. Affected product include some versions of NIP6300, NIP6600, NIP6800, S1700, S2700, S5700, S6700 , S7700, S9700, Secospace USG6300, Secospace USG6500, Secospace USG6600 and USG9500.

Data is provided by the National Vulnerability Database (NVD)
HuaweiNip6300 Firmware Versionv500r001c30
   HuaweiNip6300 Version-
HuaweiNip6300 Firmware Versionv500r001c60
   HuaweiNip6300 Version-
HuaweiNip6600 Firmware Versionv500r001c30
   HuaweiNip6600 Version-
HuaweiNip6800 Firmware Versionv500r001c60
   HuaweiNip6800 Version-
HuaweiS12700 Firmware Versionv200r007c01
   HuaweiS12700 Version-
HuaweiS12700 Firmware Versionv200r007c01b102
   HuaweiS12700 Version-
HuaweiS12700 Firmware Versionv200r008c00
   HuaweiS12700 Version-
HuaweiS12700 Firmware Versionv200r010c00
   HuaweiS12700 Version-
HuaweiS12700 Firmware Versionv200r010c00spc300
   HuaweiS12700 Version-
HuaweiS12700 Firmware Versionv200r011c00
   HuaweiS12700 Version-
HuaweiS12700 Firmware Versionv200r011c00spc100
   HuaweiS12700 Version-
HuaweiS12700 Firmware Versionv200r011c10
   HuaweiS12700 Version-
HuaweiS1700 Firmware Versionv200r009c00spc200
   HuaweiS1700 Version-
HuaweiS1700 Firmware Versionv200r009c00spc500
   HuaweiS1700 Version-
HuaweiS1700 Firmware Versionv200r010c00
   HuaweiS1700 Version-
HuaweiS1700 Firmware Versionv200r010c00spc300
   HuaweiS1700 Version-
HuaweiS1700 Firmware Versionv200r011c00
   HuaweiS1700 Version-
HuaweiS1700 Firmware Versionv200r011c00spc100
   HuaweiS1700 Version-
HuaweiS1700 Firmware Versionv200r011c10
   HuaweiS1700 Version-
HuaweiS2700 Firmware Versionv200r008c00
   HuaweiS2700 Version-
HuaweiS2700 Firmware Versionv200r010c00
   HuaweiS2700 Version-
HuaweiS2700 Firmware Versionv200r010c00spc300
   HuaweiS2700 Version-
HuaweiS2700 Firmware Versionv200r011c00
   HuaweiS2700 Version-
HuaweiS2700 Firmware Versionv200r011c00spc100
   HuaweiS2700 Version-
HuaweiS2700 Firmware Versionv200r011c10
   HuaweiS2700 Version-
HuaweiS5700 Firmware Versionv200r008c00
   HuaweiS5700 Version-
HuaweiS5700 Firmware Versionv200r010c00
   HuaweiS5700 Version-
HuaweiS5700 Firmware Versionv200r010c00spc300
   HuaweiS5700 Version-
HuaweiS5700 Firmware Versionv200r011c00
   HuaweiS5700 Version-
HuaweiS5700 Firmware Versionv200r011c00spc100
   HuaweiS5700 Version-
HuaweiS5700 Firmware Versionv200r011c10
   HuaweiS5700 Version-
HuaweiS5700 Firmware Versionv200r011c10spc100
   HuaweiS5700 Version-
HuaweiS6700 Firmware Versionv200r008c00
   HuaweiS6700 Version-
HuaweiS6700 Firmware Versionv200r010c00
   HuaweiS6700 Version-
HuaweiS6700 Firmware Versionv200r010c00spc300
   HuaweiS6700 Version-
HuaweiS6700 Firmware Versionv200r011c00
   HuaweiS6700 Version-
HuaweiS6700 Firmware Versionv200r011c00spc100
   HuaweiS6700 Version-
HuaweiS6700 Firmware Versionv200r011c10
   HuaweiS6700 Version-
HuaweiS6700 Firmware Versionv200r011c10spc100
   HuaweiS6700 Version-
HuaweiS7700 Firmware Versionv200r008c00
   HuaweiS7700 Version-
HuaweiS7700 Firmware Versionv200r010c00
   HuaweiS7700 Version-
HuaweiS7700 Firmware Versionv200r010c00spc300
   HuaweiS7700 Version-
HuaweiS7700 Firmware Versionv200r011c00
   HuaweiS7700 Version-
HuaweiS7700 Firmware Versionv200r011c00spc100
   HuaweiS7700 Version-
HuaweiS7700 Firmware Versionv200r011c10
   HuaweiS7700 Version-
HuaweiS9700 Firmware Versionv200r007c01
   HuaweiS9700 Version-
HuaweiS9700 Firmware Versionv200r007c01b102
   HuaweiS9700 Version-
HuaweiS9700 Firmware Versionv200r008c00
   HuaweiS9700 Version-
HuaweiS9700 Firmware Versionv200r010c00
   HuaweiS9700 Version-
HuaweiS9700 Firmware Versionv200r010c00spc300
   HuaweiS9700 Version-
HuaweiS9700 Firmware Versionv200r011c00
   HuaweiS9700 Version-
HuaweiS9700 Firmware Versionv200r011c00spc100
   HuaweiS9700 Version-
HuaweiS9700 Firmware Versionv200r011c10
   HuaweiS9700 Version-
HuaweiSecospace Usg6300 Firmware Versionv500r001c30
   HuaweiSecospace Usg6300 Version-
HuaweiSecospace Usg6300 Firmware Versionv500r001c60
   HuaweiSecospace Usg6300 Version-
HuaweiSecospace Usg6500 Firmware Versionv500r001c30
   HuaweiSecospace Usg6500 Version-
HuaweiSecospace Usg6500 Firmware Versionv500r001c60
   HuaweiSecospace Usg6500 Version-
HuaweiSecospace Usg6600 Firmware Versionv500r001c30
   HuaweiSecospace Usg6600 Version-
HuaweiSecospace Usg6600 Firmware Versionv500r001c60
   HuaweiSecospace Usg6600 Version-
HuaweiUsg9500 Firmware Versionv500r001c30
   HuaweiUsg9500 Version-
HuaweiUsg9500 Firmware Versionv500r001c60
   HuaweiUsg9500 Version-
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 0.21% 0.401
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 5.3 3.9 1.4
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
nvd@nist.gov 5 10 2.9
AV:N/AC:L/Au:N/C:N/I:N/A:P
CWE-416 Use After Free

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.