There is a command injection vulnerability in S12700 V200R019C00SPC500, S2700 V200R019C00SPC500, S5700 V200R019C00SPC500, S6700 V200R019C00SPC500 and S7700 V200R019C00SPC500. A module does not verify specific input sufficiently. Attackers can exploit this vulnerability by sending malicious parameters to inject command. This can compromise normal service.
Advisories
Source ID Title
EUVD EUVD EUVD-2021-9523 There is a command injection vulnerability in S12700 V200R019C00SPC500, S2700 V200R019C00SPC500, S5700 V200R019C00SPC500, S6700 V200R019C00SPC500 and S7700 V200R019C00SPC500. A module does not verify specific input sufficiently. Attackers can exploit this vulnerability by sending malicious parameters to inject command. This can compromise normal service.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: huawei

Published:

Updated: 2024-08-03T18:44:12.337Z

Reserved: 2021-01-05T00:00:00

Link: CVE-2021-22377

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2021-06-22T19:15:07.953

Modified: 2024-11-21T05:50:00.370

Link: CVE-2021-22377

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.