There is a use-after-free vulnerability in a Huawei product. A module cannot deal with specific operations in special scenarios. Attackers can exploit this vulnerability by performing malicious operations. This can cause memory use-after-free, compromising normal service. Affected product include some versions of NIP6300, NIP6600, NIP6800, S1700, S2700, S5700, S6700 , S7700, S9700, Secospace USG6300, Secospace USG6500, Secospace USG6600 and USG9500.
References
Link | Resource |
---|---|
https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20210210-01-uaf-en | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
AND |
|
Configuration 5 (hide)
AND |
|
Configuration 6 (hide)
AND |
|
Configuration 7 (hide)
AND |
|
Configuration 8 (hide)
AND |
|
Configuration 9 (hide)
AND |
|
Configuration 10 (hide)
AND |
|
Configuration 11 (hide)
AND |
|
Configuration 12 (hide)
AND |
|
Configuration 13 (hide)
AND |
|
Configuration 14 (hide)
AND |
|
History
24 Mar 2021, 20:32
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20210210-01-uaf-en - Vendor Advisory | |
CWE | CWE-416 | |
CPE | cpe:2.3:o:huawei:nip6800_firmware:v500r001c60:*:*:*:*:*:*:* cpe:2.3:h:huawei:s12700:-:*:*:*:*:*:*:* cpe:2.3:o:huawei:s9700_firmware:v200r011c10:*:*:*:*:*:*:* cpe:2.3:o:huawei:s12700_firmware:v200r011c10:*:*:*:*:*:*:* cpe:2.3:o:huawei:s1700_firmware:v200r009c00spc500:*:*:*:*:*:*:* cpe:2.3:o:huawei:s5700_firmware:v200r010c00:*:*:*:*:*:*:* cpe:2.3:o:huawei:s5700_firmware:v200r008c00:*:*:*:*:*:*:* cpe:2.3:o:huawei:s12700_firmware:v200r010c00:*:*:*:*:*:*:* cpe:2.3:o:huawei:s12700_firmware:v200r011c00spc100:*:*:*:*:*:*:* cpe:2.3:o:huawei:usg9500_firmware:v500r001c60:*:*:*:*:*:*:* cpe:2.3:o:huawei:secospace_usg6600_firmware:v500r001c30:*:*:*:*:*:*:* cpe:2.3:o:huawei:nip6300_firmware:v500r001c30:*:*:*:*:*:*:* cpe:2.3:o:huawei:s7700_firmware:v200r010c00:*:*:*:*:*:*:* cpe:2.3:o:huawei:secospace_usg6300_firmware:v500r001c60:*:*:*:*:*:*:* cpe:2.3:o:huawei:s1700_firmware:v200r009c00spc200:*:*:*:*:*:*:* cpe:2.3:o:huawei:secospace_usg6500_firmware:v500r001c30:*:*:*:*:*:*:* cpe:2.3:o:huawei:s12700_firmware:v200r007c01:*:*:*:*:*:*:* cpe:2.3:o:huawei:s6700_firmware:v200r008c00:*:*:*:*:*:*:* cpe:2.3:o:huawei:s2700_firmware:v200r010c00spc300:*:*:*:*:*:*:* cpe:2.3:o:huawei:s9700_firmware:v200r011c00:*:*:*:*:*:*:* cpe:2.3:o:huawei:s6700_firmware:v200r010c00spc300:*:*:*:*:*:*:* cpe:2.3:o:huawei:s2700_firmware:v200r010c00:*:*:*:*:*:*:* cpe:2.3:o:huawei:s9700_firmware:v200r011c00spc100:*:*:*:*:*:*:* cpe:2.3:o:huawei:secospace_usg6300_firmware:v500r001c30:*:*:*:*:*:*:* cpe:2.3:o:huawei:s5700_firmware:v200r010c00spc300:*:*:*:*:*:*:* cpe:2.3:o:huawei:s6700_firmware:v200r011c10:*:*:*:*:*:*:* cpe:2.3:o:huawei:s5700_firmware:v200r011c10:*:*:*:*:*:*:* cpe:2.3:o:huawei:s7700_firmware:v200r011c10:*:*:*:*:*:*:* cpe:2.3:h:huawei:s9700:-:*:*:*:*:*:*:* cpe:2.3:o:huawei:s9700_firmware:v200r008c00:*:*:*:*:*:*:* cpe:2.3:o:huawei:s7700_firmware:v200r008c00:*:*:*:*:*:*:* cpe:2.3:o:huawei:s1700_firmware:v200r010c00:*:*:*:*:*:*:* cpe:2.3:h:huawei:nip6600:-:*:*:*:*:*:*:* cpe:2.3:h:huawei:secospace_usg6300:-:*:*:*:*:*:*:* cpe:2.3:o:huawei:s1700_firmware:v200r010c00spc300:*:*:*:*:*:*:* cpe:2.3:o:huawei:s6700_firmware:v200r010c00:*:*:*:*:*:*:* cpe:2.3:o:huawei:s1700_firmware:v200r011c00spc100:*:*:*:*:*:*:* cpe:2.3:o:huawei:s5700_firmware:v200r011c00spc100:*:*:*:*:*:*:* cpe:2.3:o:huawei:nip6300_firmware:v500r001c60:*:*:*:*:*:*:* cpe:2.3:o:huawei:s5700_firmware:v200r011c10spc100:*:*:*:*:*:*:* cpe:2.3:o:huawei:s9700_firmware:v200r007c01b102:*:*:*:*:*:*:* cpe:2.3:o:huawei:s7700_firmware:v200r011c00spc100:*:*:*:*:*:*:* cpe:2.3:o:huawei:s12700_firmware:v200r007c01b102:*:*:*:*:*:*:* cpe:2.3:h:huawei:s7700:-:*:*:*:*:*:*:* cpe:2.3:o:huawei:secospace_usg6500_firmware:v500r001c60:*:*:*:*:*:*:* cpe:2.3:h:huawei:nip6300:-:*:*:*:*:*:*:* cpe:2.3:o:huawei:s5700_firmware:v200r011c00:*:*:*:*:*:*:* cpe:2.3:h:huawei:s1700:-:*:*:*:*:*:*:* cpe:2.3:o:huawei:s6700_firmware:v200r011c00spc100:*:*:*:*:*:*:* cpe:2.3:h:huawei:s6700:-:*:*:*:*:*:*:* cpe:2.3:o:huawei:s7700_firmware:v200r010c00spc300:*:*:*:*:*:*:* cpe:2.3:h:huawei:nip6800:-:*:*:*:*:*:*:* cpe:2.3:o:huawei:s12700_firmware:v200r011c00:*:*:*:*:*:*:* cpe:2.3:h:huawei:usg9500:-:*:*:*:*:*:*:* cpe:2.3:o:huawei:s2700_firmware:v200r011c00:*:*:*:*:*:*:* cpe:2.3:o:huawei:s12700_firmware:v200r008c00:*:*:*:*:*:*:* cpe:2.3:o:huawei:s9700_firmware:v200r007c01:*:*:*:*:*:*:* cpe:2.3:o:huawei:s6700_firmware:v200r011c00:*:*:*:*:*:*:* cpe:2.3:o:huawei:s6700_firmware:v200r011c10spc100:*:*:*:*:*:*:* cpe:2.3:o:huawei:s9700_firmware:v200r010c00spc300:*:*:*:*:*:*:* cpe:2.3:o:huawei:s2700_firmware:v200r011c10:*:*:*:*:*:*:* cpe:2.3:o:huawei:s1700_firmware:v200r011c10:*:*:*:*:*:*:* cpe:2.3:o:huawei:s9700_firmware:v200r010c00:*:*:*:*:*:*:* cpe:2.3:o:huawei:s2700_firmware:v200r008c00:*:*:*:*:*:*:* cpe:2.3:o:huawei:secospace_usg6600_firmware:v500r001c60:*:*:*:*:*:*:* cpe:2.3:h:huawei:secospace_usg6600:-:*:*:*:*:*:*:* cpe:2.3:o:huawei:s2700_firmware:v200r011c00spc100:*:*:*:*:*:*:* cpe:2.3:o:huawei:s7700_firmware:v200r011c00:*:*:*:*:*:*:* cpe:2.3:o:huawei:usg9500_firmware:v500r001c30:*:*:*:*:*:*:* cpe:2.3:o:huawei:s12700_firmware:v200r010c00spc300:*:*:*:*:*:*:* cpe:2.3:o:huawei:s1700_firmware:v200r011c00:*:*:*:*:*:*:* cpe:2.3:h:huawei:s5700:-:*:*:*:*:*:*:* cpe:2.3:o:huawei:nip6600_firmware:v500r001c30:*:*:*:*:*:*:* cpe:2.3:h:huawei:s2700:-:*:*:*:*:*:*:* cpe:2.3:h:huawei:secospace_usg6500:-:*:*:*:*:*:*:* |
|
CVSS |
v2 : v3 : |
v2 : 5.0
v3 : 5.3 |
22 Mar 2021, 20:33
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2021-03-22 20:15
Updated : 2023-12-10 13:41
NVD link : CVE-2021-22321
Mitre link : CVE-2021-22321
CVE.ORG link : CVE-2021-22321
JSON object : View
Products Affected
huawei
- usg9500
- s12700
- usg9500_firmware
- nip6600
- secospace_usg6300
- secospace_usg6500_firmware
- s7700_firmware
- nip6300
- s5700
- secospace_usg6600_firmware
- s12700_firmware
- s1700_firmware
- s6700_firmware
- s9700
- secospace_usg6600
- s1700
- s7700
- s5700_firmware
- s6700
- nip6600_firmware
- nip6300_firmware
- secospace_usg6300_firmware
- secospace_usg6500
- nip6800_firmware
- nip6800
- s9700_firmware
- s2700
- s2700_firmware
CWE
CWE-416
Use After Free