CVE-2021-22409

There is a denial of service vulnerability in some versions of ManageOne. There is a logic error in the implementation of a function of a module. When the service pressure is heavy, there is a low probability that an exception may occur. Successful exploit may cause some services abnormal.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5.3 MEDIUM
NETWORK
HIGH
LOW
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
huaweiCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 39%
VendorProductVersion
huaweimanageone
6.5:rc2.b050
huaweimanageone
6.5.0
huaweimanageone
6.5.0:spc100.b210
huaweimanageone
6.5.1:rc1.b080
huaweimanageone
6.5.1:rc2.b020
huaweimanageone
6.5.1:rc2.b030
huaweimanageone
6.5.1:rc2.b040
huaweimanageone
6.5.1:rc2.b060
huaweimanageone
6.5.1:rc2.b070
huaweimanageone
6.5.1:rc2.b080
huaweimanageone
6.5.1:rc2.b090
huaweimanageone
6.5.1:spc100.b050
huaweimanageone
6.5.1:spc101.b010
huaweimanageone
6.5.1:spc101.b040
huaweimanageone
6.5.1:spc200
huaweimanageone
6.5.1:spc200.b010
huaweimanageone
6.5.1:spc200.b030
huaweimanageone
6.5.1:spc200.b040
huaweimanageone
6.5.1:spc200.b050
huaweimanageone
6.5.1:spc200.b060
huaweimanageone
6.5.1:spc200.b070
huaweimanageone
6.5.1.1:b010
huaweimanageone
6.5.1.1:b020
huaweimanageone
6.5.1.1:b030
huaweimanageone
6.5.1.1:b040
huaweimanageone
8.0.0
huaweimanageone
8.0.0:lcnd81
huaweimanageone
8.0.0:rc2
huaweimanageone
8.0.0:rc3
huaweimanageone
8.0.0:rc3.b041
huaweimanageone
8.0.0:rc3.spc100
huaweimanageone
8.0.0:spc100
huaweimanageone
8.0.1
𝑥
= Vulnerable software versions
References
https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20210428-02-dos-en
https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20210428-02-dos-en