CVE-2021-22360

Опубликовано: 27 мая 2021

Источник: nvd

CVSS3: 4.9

CVSS2: 4

EPSS Низкий

Описание

There is a resource management error vulnerability in the verisions V500R001C60SPC500, V500R005C00SPC100, V500R005C00SPC200 of USG9500. An authentication attacker needs to perform specific operations to exploit the vulnerability on the affected device. Due to improper resource management of the function, the vulnerability can be exploited to cause service abnormal on affected devices.

Ссылки

https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20210519-01-resource-en
Vendor Advisory
https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20210519-01-resource-en
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

Одно из

cpe:2.3:o:huawei:usg9500_firmware:v500r001c60spc500:*:*:*:*:*:*:*

cpe:2.3:o:huawei:usg9500_firmware:v500r005c00spc100:*:*:*:*:*:*:*

cpe:2.3:o:huawei:usg9500_firmware:v500r005c00spc200:*:*:*:*:*:*:*

cpe:2.3:h:huawei:usg9500:-:*:*:*:*:*:*:*

EPSS

Процентиль: 35%

0.00147

Низкий

4.9 Medium

CVSS3

4 Medium

CVSS2

Дефекты

CWE-770

Связанные уязвимости

GHSA-2p54-cq77-wrjr

github

больше 3 лет назад