Free and open-source vulnerability scanner
Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.
Install NowAvailable for macOS, Windows, and Linux
Huawei Data Communication: Improper Licenses Management Vulnerability in Some Products (huawei-sa-20210407-01-resourcemanagement)
Information
Severity
Severity
Family
Family
CVSSv2 Base
CVSSv2 Base
CVSSv2 Vector
CVSSv2 Vector
Solution Type
Solution Type
Created
Created
Modified
Modified
Summary
There has a license management vulnerability in some huawei products.
Insight
Insight
An attacker with high privilege needs to perform specific operations to exploit the vulnerability on the affected device. Due to improper license management of the device, as a result, the license file can be applied and affect integrity of the device.
Affected Software
Affected Software
S12700 versions V200R007C01 V200R007C01B102 V200R008C00 V200R010C00SPC300 V200R011C00 V200R011C00SPC100 V200R011C10 S1700 versions V200R010C00SPC300 V200R011C00 V200R011C00SPC100 V200R011C10 S2700 versions V200R008C00 V200R010C00SPC300 V200R011C00 V200R011C00SPC100 V200R011C10 S5700 versions V200R008C00 V200R010C00SPC300 V200R011C00 V200R011C00SPC100 V200R011C10 V200R011C10SPC100 S6700 versions V200R008C00 V200R010C00SPC300 V200R011C00 V200R011C00SPC100 V200R011C10 V200R011C10SPC100 S7700 versions V200R008C00 V200R010C00SPC300 V200R011C00 V200R011C00SPC100 V200R011C10 S9700 versions V200R007C01 V200R007C01B102 V200R008C00 V200R010C00SPC300 V200R011C00 V200R011C00SPC100 V200R011C10
Detection Method
Detection Method
Checks if a vulnerable version is present on the target host.
Solution
Solution
See the referenced vendor advisory for a solution.