CVE-2021-22303

CWE-4153 documents3 sources
Severity
3.3LOW
EPSS
0.1%
top 75.77%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Huawei Taurus-al00a Firmware
Timeline
PublishedFeb 6
Latest updateMay 24

Description

There is a pointer double free vulnerability in Taurus-AL00A 10.0.0.1(C00E1R1P1). There is a lack of muti-thread protection when a function is called. Attackers can exploit this vulnerability by performing malicious operation to cause pointer double free. This may lead to module crash, compromising normal service.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:LExploitability: 1.8 | Impact: 1.4

Affected Packages2 packages

CVEListV5taurus-al00a10.0.0.1(C00E1R1P1)
NVDhuawei/taurus-al00a_firmware10.0.0.1\(c00e1r1p1\)

🔴Vulnerability Details

2
GHSA
GHSA-p269-cjrj-rq9c: There is a pointer double free vulnerability in Taurus-AL00A 102022-05-24
CVEList
CVE-2021-22303: There is a pointer double free vulnerability in Taurus-AL00A 102021-02-06
CVE-2021-22303 (LOW CVSS 3.3) | There is a pointer double free vuln | cvebase.io