CVE-2021-22359

Name of the Vulnerable Software and Affected Versions: S5700 version V200R005C00SPC500 S6700 version V200R005C00SPC500

Description: The issue is related to a denial of service vulnerability. An attacker could exploit this by sending a specific message to a targeted device. The vulnerability is caused by insufficient input validation, which can lead to service abnormality if the exploit is successful.

Recommendations: For S5700 version V200R005C00SPC500, consider restricting access to the device to minimize the risk of exploitation until a fix is available. For S6700 version V200R005C00SPC500, consider implementing additional validation checks on incoming messages to prevent service abnormality. At the moment, there is no information about a newer version that contains a fix for this vulnerability.