CVE-2021-22356

Name of the Vulnerable Software and Affected Versions: Huawei IPS Module versions V500R005C00SPC100 through V500R005C00SPC200 Huawei NGFW Module versions V500R005C00SPC100 through V500R005C00SPC200 Huawei Secospace USG6300 versions V500R001C30SPC200 through V500R005C00SPC200 Huawei Secospace USG6500 versions V500R001C30SPC200 through V500R005C00SPC200 Huawei Secospace USG6600 versions V500R001C30SPC200 through V500R005C00SPC200 Huawei USG9500 versions V500R001C30SPC200 through V500R005C00SPC200

Description: A weak secure algorithm is used in a module of Huawei products, allowing attackers to capture and analyze messages between devices to obtain information, potentially leading to an information leak.

Recommendations: For Huawei IPS Module versions V500R005C00SPC100 through V500R005C00SPC200, update to a version that uses a secure algorithm. For Huawei NGFW Module versions V500R005C00SPC100 through V500R005C00SPC200, update to a version that uses a secure algorithm. For Huawei Secospace USG6300 versions V500R001C30SPC200 through V500R005C00SPC200, update to a version that uses a secure algorithm. For Huawei Secospace USG6500 versions V500R001C30SPC200 through V500R005C00SPC200, update to a version that uses a secure algorithm. For Huawei Secospace USG6600 versions V500R001C30SPC200 through V500R005C00SPC200, update to a version that uses a secure algorithm. For Huawei USG9500 versions V500R001C30SPC200 through V500R005C00SPC200, update to a version that uses a secure algorithm. As a temporary workaround, consider disabling the module that uses the weak secure algorithm until a patch is available.