What is CVE-2021-22299?

CVE-2021-22299 is a high-severity vulnerability in Huawei Imaster_mae-m. CVSS score: 7.8/10. Published 2021-02-06.

How severe is CVE-2021-22299?

High severity. CVSS v3 base score is 7.8 out of 10.

Vulnerability in Huawei Imaster_mae-m

CVE-2021-22299

There is a local privilege escalation vulnerability in some Huawei products. A local, authenticated attacker could craft specific commands to exploit this vulnerability. Successful exploitation may cause the attacker to obtain a higher pri…

EPSS: 0.002 (13.4th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.8 (High). Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H.

Affected products

Huawei Imaster_mae-m — versions v100r020c10spc220
Huawei Manageone — versions 6.5.0, 6.5.1, 6.5.1.1
Huawei Network_functions_virtualization_fusionsphere — versions 6.5.1
Huawei Smc2.0
Huawei Smc2.0_firmware — versions v600r019c00, v600r019c10
N/a Imaster Mae-m — versions MAE-TOOL(FusionSphereBasicTemplate_Euler_X86)V100R020C10SPC220
N/a Manageone — versions 6.5.0, 6.5.0.SPC100.B210, 6.5.1.1.B010
N/a Nfv_fusionsphere — versions 6.5.1.SPC23, 8.0.0.SPC12
N/a Smc2.0 — versions V600R019C00, V600R019C10

References

psirt@huawei.com (x_refsource_CONFIRM, Vendor Advisory)

Frequently asked questions

What is CVE-2021-22299?: CVE-2021-22299 is a high-severity vulnerability in Huawei Imaster_mae-m. CVSS score: 7.8/10. Published 2021-02-06.
How severe is CVE-2021-22299?: High severity. CVSS v3 base score is 7.8 out of 10.