CVE-2021-22299
N/A
Summary
There is a local privilege escalation vulnerability in some Huawei products. A local, authenticated attacker could craft specific commands to exploit this vulnerability. Successful exploitation may cause the attacker to obtain a higher privilege. Affected product versions include: ManageOne versions 6.5.0,6.5.0.SPC100.B210,6.5.1.1.B010,6.5.1.1.B020,6.5.1.1.B030,6.5.1.1.B040,6.5.1.SPC100.B050,6.5.1.SPC101.B010,6.5.1.SPC101.B040,6.5.1.SPC200,6.5.1.SPC200.B010,6.5.1.SPC200.B030,6.5.1.SPC200.B040,6.5.1.SPC200.B050,6.5.1.SPC200.B060,6.5.1.SPC200.B070,6.5.1RC1.B060,6.5.1RC2.B020,6.5.1RC2.B030,6.5.1RC2.B040,6.5.1RC2.B050,6.5.1RC2.B060,6.5.1RC2.B070,6.5.1RC2.B080,6.5.1RC2.B090,6.5.RC2.B050,8.0.0,8.0.0-LCND81,8.0.0.SPC100,8.0.1,8.0.RC2,8.0.RC3,8.0.RC3.B041,8.0.RC3.SPC100; NFV_FusionSphere versions 6.5.1.SPC23,8.0.0.SPC12; SMC2.0 versions V600R019C00,V600R019C10; iMaster MAE-M versions MAE-TOOL(FusionSphereBasicTemplate_Euler_X86)V100R020C10SPC220.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | ManageOne | 6.5.0 | affected |
| n/a | ManageOne | 6.5.0.SPC100.B210 | affected |
| n/a | ManageOne | 6.5.1.1.B010 | affected |
| n/a | ManageOne | 6.5.1.1.B020 | affected |
| n/a | ManageOne | 6.5.1.1.B030 | affected |
| n/a | ManageOne | 6.5.1.1.B040 | affected |
| n/a | ManageOne | 6.5.1.SPC100.B050 | affected |
| n/a | ManageOne | 6.5.1.SPC101.B010 | affected |
| n/a | ManageOne | 6.5.1.SPC101.B040 | affected |
| n/a | ManageOne | 6.5.1.SPC200 | affected |
| n/a | ManageOne | 6.5.1.SPC200.B010 | affected |
| n/a | ManageOne | 6.5.1.SPC200.B030 | affected |
| n/a | ManageOne | 6.5.1.SPC200.B040 | affected |
| n/a | ManageOne | 6.5.1.SPC200.B050 | affected |
| n/a | ManageOne | 6.5.1.SPC200.B060 | affected |
| n/a | ManageOne | 6.5.1.SPC200.B070 | affected |
| n/a | ManageOne | 6.5.1RC1.B060 | affected |
| n/a | ManageOne | 6.5.1RC2.B020 | affected |
| n/a | ManageOne | 6.5.1RC2.B030 | affected |
| n/a | ManageOne | 6.5.1RC2.B040 | affected |
| n/a | ManageOne | 6.5.1RC2.B050 | affected |
| n/a | ManageOne | 6.5.1RC2.B060 | affected |
| n/a | ManageOne | 6.5.1RC2.B070 | affected |
| n/a | ManageOne | 6.5.1RC2.B080 | affected |
| n/a | ManageOne | 6.5.1RC2.B090 | affected |
| n/a | ManageOne | 6.5.RC2.B050 | affected |
| n/a | ManageOne | 8.0.0 | affected |
| n/a | ManageOne | 8.0.0-LCND81 | affected |
| n/a | ManageOne | 8.0.0.SPC100 | affected |
| n/a | ManageOne | 8.0.1 | affected |
| n/a | ManageOne | 8.0.RC2 | affected |
| n/a | ManageOne | 8.0.RC3 | affected |
| n/a | ManageOne | 8.0.RC3.B041 | affected |
| n/a | ManageOne | 8.0.RC3.SPC100 | affected |
| n/a | NFV_FusionSphere | 6.5.1.SPC23 | affected |
| n/a | NFV_FusionSphere | 8.0.0.SPC12 | affected |
| n/a | SMC2.0 | V600R019C00 | affected |
| n/a | SMC2.0 | V600R019C10 | affected |
| n/a | iMaster MAE-M | MAE-TOOL(FusionSphereBasicTemplate_Euler_X86)V100R020C10SPC220 | affected |
Weaknesses
- Local Privilege Escalation
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.