Lucene search

[email protected]CVE-2014-2273

HistoryDec 05, 2014 - 4:59 p.m.

CVE-2014-2273

2014-12-0516:59:01

CWE-264

[email protected]

web.nvd.nist.gov

huawei

p2-6011

hx170dec

driver

local privilege escalation

cve-2014-2273

nvd

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

6.5 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

The hx170dec device driver in Huawei P2-6011 before V100R001C00B043 allows local users to read and write to arbitrary memory locations via unspecified vectors.

Affected configurations

NVD

Node

huaweip2-6011_firmwareRange≤v100r001c00b042

AND

huaweip2-6011Match-

CPENameOperatorVersion
huawei:p2-6011_firmwarehuawei p2-6011 firmwarelev100r001c00b042

CPE	Name	Operator	Version
huawei:p2-6011_firmware	huawei p2-6011 firmware	le	v100r001c00b042

References

www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-401529.htm

www.securityfocus.com/bid/71374

exchange.xforce.ibmcloud.com/vulnerabilities/99088

labs.mwrinfosecurity.com/system/assets/762/original/mwri_advisory_huawei_driver-root-exploit.pdf

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

6.5 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for CVE-2014-2273

cvelist1 prion1 nvd1 huawei1