PT-2021-14963 · Huawei · Cloudengine 7800+4
Published
2021-04-07
·
Updated
2022-07-12
·
CVE-2021-22328
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions:
Huawei CloudEngine 12800 version V200R005C00SPC800
Huawei CloudEngine 5800 version V200R005C00SPC800
Huawei CloudEngine 6800 version V200R005C00SPC800
Huawei CloudEngine 7800 version V200R005C00SPC800
Description:
There is a denial of service issue in some Huawei products. In specific scenarios, due to the improper handling of packets, an attacker may craft a specific packet. Successful exploitation may cause some services to become abnormal.
Recommendations:
For Huawei CloudEngine 12800 version V200R005C00SPC800, update to a version that fixes the improper handling of packets.
For Huawei CloudEngine 5800 version V200R005C00SPC800, update to a version that fixes the improper handling of packets.
For Huawei CloudEngine 6800 version V200R005C00SPC800, update to a version that fixes the improper handling of packets.
For Huawei CloudEngine 7800 version V200R005C00SPC800, update to a version that fixes the improper handling of packets.
As a temporary workaround, consider restricting the handling of crafted packets to minimize the risk of exploitation.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Cloudengine 12800
Cloudengine 5800
Cloudengine 6800
Cloudengine 7800
Huawei Vrp