CVE-2021-22357
HIGHHuawei S12700/S5700/S6700/S7700 Firmware - Denial of Service via Crafted Message Input
Title source: llmDescription
There is a denial of service vulnerability in Huawei products. A module cannot deal with specific messages due to validating inputs insufficiently. Attackers can exploit this vulnerability by sending specific messages to affected module. This can cause denial of service. Affected product versions include: S12700 V200R013C00SPC500, V200R019C00SPC500; S5700 V200R013C00SPC500, V200R019C00SPC500; S6700 V200R013C00SPC500, V200R019C00SPC500; S7700 V200R013C00SPC500, V200R019C00SPC500.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_misc
https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20210512-01-dos-en
Scores
CVSS v3
7.5
EPSS
0.0018
EPSS Percentile
39.4%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Details
CWE
CWE-20
Status
published
Products (8)
huawei/s12700_firmware
v200r013c00spc500
huawei/s12700_firmware
v200r019c00spc500
huawei/s5700_firmware
v200r013c00spc500
huawei/s5700_firmware
v200r019c00spc500
huawei/s6700_firmware
v200r013c00spc500
huawei/s6700_firmware
v200r019c00spc500
huawei/s7700_firmware
v200r013c00spc500
huawei/s7700_firmware
v200r019c00spc500
Published
Aug 23, 2021
Tracked Since
Feb 18, 2026