First published: Tue Jun 22 2021(Updated: )
There is an information leak vulnerability in Huawei products. A module does not deal with specific input sufficiently. High privilege attackers can exploit this vulnerability by performing some operations. This can lead to information leak. Affected product versions include: IPS Module versions V500R005C00, V500R005C10, V500R005C20; NGFW Module versions V500R005C00,V500R005C10, V500R005C20; SeMG9811 versions V500R005C00; USG9500 versions V500R001C00, V500R001C20, V500R001C30, V500R001C50, V500R001C60, V500R001C80, V500R005C00, V500R005C10, V500R005C20.
Credit: psirt@huawei.com
Affected Software | Affected Version | How to fix |
---|---|---|
Huawei Ips Module Firmware | =v500r005c00 | |
Huawei Ips Module Firmware | =v500r005c10 | |
Huawei Ips Module Firmware | =v500r005c20 | |
Huawei IPS Module | ||
Huawei Ngfw Module Firmware | =v500r005c00 | |
Huawei Ngfw Module Firmware | =v500r005c10 | |
Huawei Ngfw Module Firmware | =v500r005c20 | |
Huawei NGFW Module | ||
Huawei Semg9811 Firmware | =v500r005c00 | |
Huawei Semg9811 | ||
Huawei Usg9500 Firmware | =v500r001c00 | |
Huawei Usg9500 Firmware | =v500r001c20 | |
Huawei Usg9500 Firmware | =v500r001c30 | |
Huawei Usg9500 Firmware | =v500r001c50 | |
Huawei Usg9500 Firmware | =v500r001c60 | |
Huawei Usg9500 Firmware | =v500r001c80 | |
Huawei Usg9500 Firmware | =v500r005c00 | |
Huawei Usg9500 Firmware | =v500r005c10 | |
Huawei Usg9500 Firmware | =v500r005c20 | |
Huawei USG9500 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2021-22342 is an information leak vulnerability in Huawei products.
High privilege attackers can exploit CVE-2021-22342 by performing certain operations.
CVE-2021-22342 has a severity rating of 4.9 (medium).
The affected Huawei products include IPS Module versions V50R005C00, V50R005C10, and V50R005C20.
You can find more information about CVE-2021-22342 on the Huawei Security Advisory page.