Huawei : Huawei Data Communication: Improper Licenses Management Vulnerability in Some Products (huawei-sa-20210407-01-resourcemanagement)

Anfälligkeitssuche		Suche in 324607 CVE Beschreibungen und 145615 Test Beschreibungen, Zugriff auf 10,000+ Quellverweise.
	Tests CVE Alle

Test Kennung: 1.3.6.1.4.1.25623.1.0.146194

Kategorie: Huawei

Titel: Huawei Data Communication: Improper Licenses Management Vulnerability in Some Products (huawei-sa-20210407-01-resourcemanagement)

Zusammenfassung: There has a license management vulnerability in some huawei products.

Beschreibung: Summary:
There has a license management vulnerability in some huawei products.

Vulnerability Insight:
An attacker with high privilege needs to perform specific
operations to exploit the vulnerability on the affected device. Due to improper license
management of the device, as a result, the license file can be applied and affect integrity of
the device.

Vulnerability Impact:
The vulnerability can be exploited to affect the integrity of
the device.

Affected Software/OS:
S12700 versions V200R007C01 V200R007C01B102 V200R008C00
V200R010C00SPC300 V200R011C00 V200R011C00SPC100 V200R011C10

S1700 versions V200R010C00SPC300 V200R011C00 V200R011C00SPC100 V200R011C10

S2700 versions V200R008C00 V200R010C00SPC300 V200R011C00 V200R011C00SPC100 V200R011C10

S5700 versions V200R008C00 V200R010C00SPC300 V200R011C00 V200R011C00SPC100 V200R011C10 V200R011C10SPC100

S6700 versions V200R008C00 V200R010C00SPC300 V200R011C00 V200R011C00SPC100 V200R011C10 V200R011C10SPC100

S7700 versions V200R008C00 V200R010C00SPC300 V200R011C00 V200R011C00SPC100 V200R011C10

S9700 versions V200R007C01 V200R007C01B102 V200R008C00 V200R010C00SPC300 V200R011C00 V200R011C00SPC100
V200R011C10

Solution:
See the referenced vendor advisory for a solution.

CVSS Score:
4.0

CVSS Vector:
AV:N/AC:L/Au:S/C:N/I:P/A:N

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2021-22329
https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20210407-01-resourcemanagement-en

Copyright Copyright (C) 2021 Greenbone Networks GmbH

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.
Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.

Test Kennung:	1.3.6.1.4.1.25623.1.0.146194
Kategorie:	Huawei
Titel:	Huawei Data Communication: Improper Licenses Management Vulnerability in Some Products (huawei-sa-20210407-01-resourcemanagement)
Zusammenfassung:	There has a license management vulnerability in some huawei products.
Beschreibung:	Summary: There has a license management vulnerability in some huawei products. Vulnerability Insight: An attacker with high privilege needs to perform specific operations to exploit the vulnerability on the affected device. Due to improper license management of the device, as a result, the license file can be applied and affect integrity of the device. Vulnerability Impact: The vulnerability can be exploited to affect the integrity of the device. Affected Software/OS: S12700 versions V200R007C01 V200R007C01B102 V200R008C00 V200R010C00SPC300 V200R011C00 V200R011C00SPC100 V200R011C10 S1700 versions V200R010C00SPC300 V200R011C00 V200R011C00SPC100 V200R011C10 S2700 versions V200R008C00 V200R010C00SPC300 V200R011C00 V200R011C00SPC100 V200R011C10 S5700 versions V200R008C00 V200R010C00SPC300 V200R011C00 V200R011C00SPC100 V200R011C10 V200R011C10SPC100 S6700 versions V200R008C00 V200R010C00SPC300 V200R011C00 V200R011C00SPC100 V200R011C10 V200R011C10SPC100 S7700 versions V200R008C00 V200R010C00SPC300 V200R011C00 V200R011C00SPC100 V200R011C10 S9700 versions V200R007C01 V200R007C01B102 V200R008C00 V200R010C00SPC300 V200R011C00 V200R011C00SPC100 V200R011C10 Solution: See the referenced vendor advisory for a solution. CVSS Score: 4.0 CVSS Vector: AV:N/AC:L/Au:S/C:N/I:P/A:N
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2021-22329 https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20210407-01-resourcemanagement-en
Copyright	Copyright (C) 2021 Greenbone Networks GmbH