Memory leak in Huawei products - CVE-2021-22341
Published: May 21, 2021
Vulnerability identifier: #VU53424
CSH Severity: Low
CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2021-22341
CWE-ID: CWE-401
Exploitation vector: Remote access
Exploit availability:
No public exploit available
Vulnerable software:
Huawei IPS Module
Huawei NIP6300
Huawei NIP6600
Huawei NGFW Module
Huawei Secospace USG6300
Huawei Secospace USG6500
Huawei Secospace USG6600
Huawei IPS Module
Huawei NIP6300
Huawei NIP6600
Huawei NGFW Module
Huawei Secospace USG6300
Huawei Secospace USG6500
Huawei Secospace USG6600
Software vendor:
Huawei
Huawei
Description
The vulnerability allows a remote user to perform DoS attack on the target system.
The vulnerability exists due memory leak. A remote administrator can force the application to leak memory and perform denial of service attack.
Remediation
Install updates from vendor's website.