HIGH🇵🇱 Wersja polska

CVE-2021-22332

CVSS 7.5v3.1pub. 2021-04-28upd. 2024-11-21

There is a pointer double free vulnerability in some versions of CloudEngine 5800, CloudEngine 6800, CloudEngine 7800 and CloudEngine 12800. When a function is called, the same memory pointer is copied to two functional modules. Attackers can exploit this vulnerability by performing a malicious operation to cause the pointer double free. This may lead to module crash, compromising normal service.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
  • Huawei Cloudengine 12800

    HW
    Huawei
    wszystkie wersje
  • Huawei Cloudengine 12800 Firmware

    OS
    Huawei
    v200r002c50spc800v200r003c00spc810v200r005c00spc800v200r005c10spc800
  • Huawei Cloudengine 5800

    HW
    Huawei
    wszystkie wersje
  • Huawei Cloudengine 5800 Firmware

    OS
    Huawei
    v200r002c50spc800v200r003c00spc810v200r005c00spc800v200r005c10spc800
  • Huawei Cloudengine 6800

    HW
    Huawei
    wszystkie wersje
  • Huawei Cloudengine 6800 Firmware

    OS
    Huawei
    v200r002c50spc800v200r003c00spc810v200r005c00spc800v200r005c10spc800
  • Huawei Cloudengine 7800

    HW
    Huawei
    wszystkie wersje
  • Huawei Cloudengine 7800 Firmware

    OS
    Huawei
    v200r002c50spc800v200r003c00spc810v200r005c00spc800v200r005c10spc800
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2017-17301CRITICAL9.8ten sam produkt

Huawei AR120-S V200R005C32, V200R006C10, V200R007C00, V200R008C20, AR1200 V200R005C20, V200R005C32, V200R006C1...

CVE-2016-6178CRITICAL9.8ten sam produkt

Huawei NE40E and CX600 devices with software before V800R007SPH017; PTN 6900-2-M8 devices with software before...

CVE-2021-40008HIGH7.5ten sam produkt

There is a memory leak vulnerability in CloudEngine 12800 V200R019C00SPC800, CloudEngine 5800 V200R019C00SPC80...

CVE-2021-39976HIGH7.8ten sam produkt

There is a privilege escalation vulnerability in CloudEngine 5800 V200R020C00SPC600. Due to lack of privilege ...

CVE-2021-22328HIGH7.5ten sam produkt

There is a denial of service vulnerability in some huawei products. In specific scenarios, due to the improper...