7.5

CVE-2021-22328

EPSS 0.18%
Veröffentlicht 23.08.2021 20:15:13
Zuletzt bearbeitet 21.11.2024 05:49:55
Quelle psirt@huawei.com
Teams Watchlist Login
Unerledigt Login

There is a denial of service vulnerability in some huawei products. In specific scenarios, due to the improper handling of the packets, an attacker may craft the specific packet. Successful exploit may cause some services abnormal. Affected product versions include:CloudEngine 12800 V200R005C00SPC800, CloudEngine 5800 V200R005C00SPC800, CloudEngine 6800 V200R005C00SPC800, CloudEngine 7800 V200R005C00SPC800.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 0 Referenzen 4

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Huawei ≫ Cloudengine 12800 Firmware Versionv200r005c00spc800

Huawei ≫ Cloudengine 12800 Version-

Huawei ≫ Cloudengine 5800 Firmware Versionv200r005c00spc800

Huawei ≫ Cloudengine 5800 Version-

Huawei ≫ Cloudengine 6800 Firmware Versionv200r005c00spc800

Huawei ≫ Cloudengine 6800 Version-

Huawei ≫ Cloudengine 7800 Firmware Versionv200r005c00spc800

Huawei ≫ Cloudengine 7800 Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.18%	0.367

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:N/I:N/A:P

https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20210407-01-dos-en

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2021-22328

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2021-22328

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2021-22328

EUVD