CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-22411

There is an out-of-bounds write vulnerability in some Huawei products. The code of a module have a bad judgment logic. Attackers can exploit this vulnerability by performing multiple abnormal activities to trigger the bad logic and cause out-of-bounds write. This may compromise the normal service of the module.Affected product versions include: NGFW Module versions V500R005C00SPC100,V500R005C00SPC200;Secospace USG6300 versions V500R001C30SPC200,V500R001C30SPC600,V500R001C60SPC500,V500R005C00SPC100,V500R005C00SPC200;Secospace USG6500 versions V500R001C30SPC200,V500R001C30SPC600,V500R001C60SPC500,V500R005C00SPC100,V500R005C00SPC200;Secospace USG6600 versions V500R001C30SPC200,V500R001C30SPC600,V500R001C60SPC500,V500R005C00SPC100,V500R005C00SPC200;USG9500 versions V500R001C60SPC500,V500R005C00SPC100,V500R005C00SPC200.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 39.3%

CVSS Severity

CVSS v3 Score 6.5

CVSS v2 Score 4.0

References

Products affected by CVE-2021-22411

Huawei » Ngfw Module » Version: N/A

cpe:2.3:h:huawei:ngfw_module:-
Huawei » Secospace Usg6300 » Version: N/A

cpe:2.3:h:huawei:secospace_usg6300:-
Huawei » Secospace Usg6500 » Version: N/A

cpe:2.3:h:huawei:secospace_usg6500:-
Huawei » Secospace Usg6600 » Version: N/A

cpe:2.3:h:huawei:secospace_usg6600:-
Huawei » Usg9500 » Version: N/A

cpe:2.3:h:huawei:usg9500:-
Huawei » Ngfw Module Firmware » Version: v500r005c00spc100

cpe:2.3:o:huawei:ngfw_module_firmware:v500r005c00spc100
Huawei » Ngfw Module Firmware » Version: v500r005c00spc200

cpe:2.3:o:huawei:ngfw_module_firmware:v500r005c00spc200
Huawei » Secospace Usg6300 Firmware » Version: v500r001c30spc200

cpe:2.3:o:huawei:secospace_usg6300_firmware:v500r001c30spc200
Huawei » Secospace Usg6300 Firmware » Version: v500r001c30spc600

cpe:2.3:o:huawei:secospace_usg6300_firmware:v500r001c30spc600
Huawei » Secospace Usg6300 Firmware » Version: v500r001c60spc500

cpe:2.3:o:huawei:secospace_usg6300_firmware:v500r001c60spc500
Huawei » Secospace Usg6300 Firmware » Version: v500r005c00spc100

cpe:2.3:o:huawei:secospace_usg6300_firmware:v500r005c00spc100
Huawei » Secospace Usg6300 Firmware » Version: v500r005c00spc200

cpe:2.3:o:huawei:secospace_usg6300_firmware:v500r005c00spc200
Huawei » Secospace Usg6500 Firmware » Version: v500r001c30spc200

cpe:2.3:o:huawei:secospace_usg6500_firmware:v500r001c30spc200
Huawei » Secospace Usg6500 Firmware » Version: v500r001c30spc600

cpe:2.3:o:huawei:secospace_usg6500_firmware:v500r001c30spc600
Huawei » Secospace Usg6500 Firmware » Version: v500r001c60spc500

cpe:2.3:o:huawei:secospace_usg6500_firmware:v500r001c60spc500
Huawei » Secospace Usg6500 Firmware » Version: v500r005c00spc100

cpe:2.3:o:huawei:secospace_usg6500_firmware:v500r005c00spc100
Huawei » Secospace Usg6500 Firmware » Version: v500r005c00spc200

cpe:2.3:o:huawei:secospace_usg6500_firmware:v500r005c00spc200
Huawei » Secospace Usg6600 Firmware » Version: v500r001c30spc200

cpe:2.3:o:huawei:secospace_usg6600_firmware:v500r001c30spc200
Huawei » Secospace Usg6600 Firmware » Version: v500r001c30spc600

cpe:2.3:o:huawei:secospace_usg6600_firmware:v500r001c30spc600
Huawei » Secospace Usg6600 Firmware » Version: v500r001c60spc500

cpe:2.3:o:huawei:secospace_usg6600_firmware:v500r001c60spc500
Huawei » Secospace Usg6600 Firmware » Version: v500r005c00spc100

cpe:2.3:o:huawei:secospace_usg6600_firmware:v500r005c00spc100
Huawei » Secospace Usg6600 Firmware » Version: v500r005c00spc200

cpe:2.3:o:huawei:secospace_usg6600_firmware:v500r005c00spc200
Huawei » Usg9500 Firmware » Version: v500r001c60spc500

cpe:2.3:o:huawei:usg9500_firmware:v500r001c60spc500
Huawei » Usg9500 Firmware » Version: v500r005c00spc100

cpe:2.3:o:huawei:usg9500_firmware:v500r005c00spc100
Huawei » Usg9500 Firmware » Version: v500r005c00spc200

cpe:2.3:o:huawei:usg9500_firmware:v500r005c00spc200

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-22411

Products

Pricing

Contact Us