CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-22449

There is a logic vulnerability in Elf-G10HN 1.0.0.608. An unauthenticated attacker could perform specific operations to exploit this vulnerability. Due to insufficient security design, successful exploit could allow an attacker to add users to be friends without prompting in the target device.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 39.9%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20210630-01-logic-en
https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20210630-01-logic-en

Products affected by CVE-2021-22449

Huawei » Elf-G10hn » Version: 1.0.0.608

cpe:2.3:a:huawei:elf-g10hn:1.0.0.608

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-22449

Products

Pricing

Contact Us