CVE-2021-22329

Name of the Vulnerable Software and Affected Versions Huawei S12700 versions V200R007C01 through V200R011C10 Huawei S1700 versions V200R010C00SPC300 through V200R011C10 Huawei S2700 versions V200R008C00 through V200R011C10 Huawei S5700 versions V200R008C00 through V200R011C10SPC100 Huawei S6700 versions V200R008C00 through V200R011C10SPC100 Huawei S7700 versions V200R008C00 through V200R011C10 Huawei S9700 versions V200R007C01 through V200R011C10

Description The issue is related to improper license management in Huawei products, allowing an attacker with high privilege to perform specific operations and affect the integrity of the device by applying a license file.

Recommendations For Huawei S12700 versions V200R007C01 through V200R011C10, update to a version that includes the fix for the license management vulnerability. For Huawei S1700 versions V200R010C00SPC300 through V200R011C10, update to a version that includes the fix for the license management vulnerability. For Huawei S2700 versions V200R008C00 through V200R011C10, update to a version that includes the fix for the license management vulnerability. For Huawei S5700 versions V200R008C00 through V200R011C10SPC100, update to a version that includes the fix for the license management vulnerability. For Huawei S6700 versions V200R008C00 through V200R011C10SPC100, update to a version that includes the fix for the license management vulnerability. For Huawei S7700 versions V200R008C00 through V200R011C10, update to a version that includes the fix for the license management vulnerability. For Huawei S9700 versions V200R007C01 through V200R011C10, update to a version that includes the fix for the license management vulnerability. As a temporary workaround, consider restricting access to the license management functionality until a patch is available.