CVE-2021-22362
Description
There is an out of bounds write vulnerability in some Huawei products. An attacker can exploit this vulnerability by sending crafted data in the packet to the target device. Due to insufficient validation of message, successful exploit can cause certain service abnormal.Affected product versions include:CloudEngine 12800 versions V200R002C50SPC800,V200R003C00SPC810,V200R005C00SPC800,V200R005C10SPC800,V200R019C00SPC800,V200R019C10SPC800;CloudEngine 5800 versions V200R002C50SPC800,V200R003C00SPC810,V200R005C00SPC800,V200R005C10SPC800,V200R019C00SPC800,V200R019C10SPC800@;CloudEngine 6800 versions V200R002C50SPC800,V200R003C00SPC810,V200R005C00SPC800,V200R005C10SPC800,V200R005C20SPC800,V200R019C00SPC800,V200R019C10SPC800;CloudEngine 7800 versions V200R002C50SPC800,V200R003C00SPC810,V200R005C00SPC800,V200R005C10SPC800,V200R019C00SPC800,V200R019C10SPC800.
Risk Information
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Vulnerabilities CVE-2019-5248 ,CVE-2021-22332 ,CVE-2021-22362 ,CVE-2021-22393 are affected in cloudengine_12800_firmware v200r002c50spc800 | NCM |
| Vulnerabilities CVE-2021-22332 ,CVE-2021-22362 ,CVE-2021-22393 are affected in cloudengine_12800_firmware v200r005c10spc800 | NCM |
| Vulnerabilities CVE-2021-22332 ,CVE-2021-22362 ,CVE-2021-22393 are affected in cloudengine_12800_firmware v200r005c00spc800 | NCM |
| Vulnerabilities CVE-2021-22332 ,CVE-2021-22362 ,CVE-2021-22393 are affected in cloudengine_12800_firmware v200r003c00spc810 | NCM |
| Vulnerabilities CVE-2021-22362 are affected in cloudengine_12800_firmware v200r019c10spc800 | NCM |
| Vulnerabilities CVE-2021-22362 are affected in cloudengine_12800_firmware v200r019c00spc800 | NCM |
| Out-of-bounds Write Vulnerability (CVE-2021-22362) | NCM |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234