1. Home
  2. CVE Database
  3. CVE-2021-22329
MEDIUM · 4.9

CVE-2021-22329

There has a license management vulnerability in some Huawei products. An attacker with high privilege needs to perform specific operations to exploit the vulnerability on the affected device. Due to i...

Vulnerability Description

There has a license management vulnerability in some Huawei products. An attacker with high privilege needs to perform specific operations to exploit the vulnerability on the affected device. Due to improper license management of the device, as a result, the license file can be applied and affect integrity of the device. Affected product versions include:S12700 V200R007C01,V200R007C01B102,V200R008C00,V200R010C00SPC300,V200R011C00,V200R011C00SPC100,V200R011C10;S1700 V200R010C00SPC300,V200R011C00,V200R011C00SPC100,V200R011C10;S2700 V200R008C00,V200R010C00SPC300,V200R011C00,V200R011C00SPC100,V200R011C10;S5700 V200R008C00,V200R010C00SPC300,V200R011C00,V200R011C00SPC100,V200R011C10,V200R011C10SPC100;S6700 V200R008C00,V200R010C00SPC300,V200R011C00,V200R011C00SPC100,V200R011C10,V200R011C10SPC100;S7700 V200R008C00,V200R010C00SPC300,V200R011C00,V200R011C00SPC100,V200R011C10;S9700 V200R007C01,V200R007C01B102,V200R008C00,V200R010C00SPC300,V200R011C00,V200R011C00SPC100,V200R011C10.

CVSS Score

4.9

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
NONE
Integrity
HIGH
Availability
NONE

Affected Products

VendorProductVersions
HuaweiS12700 Firmwarev200r007c01
HuaweiS12700-
HuaweiS1700 Firmwarev200r010c00spc300
HuaweiS1700-
HuaweiS2700 Firmwarev200r008c00
HuaweiS2700-
HuaweiS5700 Firmwarev200r008c00
HuaweiS5700-
HuaweiS6700 Firmwarev200r008c00
HuaweiS6700-
HuaweiS7700 Firmwarev200r008c00
HuaweiS7700-
HuaweiS9700 Firmwarev200r007c01
HuaweiS9700-

References

FAQ

What is CVE-2021-22329?

CVE-2021-22329 is a vulnerability with a CVSS score of 4.9 (MEDIUM). There has a license management vulnerability in some Huawei products. An attacker with high privilege needs to perform specific operations to exploit the vulnerability on the affected device. Due to i...

How severe is CVE-2021-22329?

CVE-2021-22329 has been rated MEDIUM with a CVSS base score of 4.9/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2021-22329?

Check the references section above for vendor advisories and patch information. Affected products include: Huawei S12700 Firmware, Huawei S12700, Huawei S1700 Firmware, Huawei S1700, Huawei S2700 Firmware.