CVSS2
Attack Vector
ADJACENT_NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:A/AC:L/Au:N/C:N/I:N/A:P
CVSS3
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
Confidence
High
EPSS
Percentile
25.0%
Some Huawei products have an insufficient input verification vulnerability. Attackers can exploit this vulnerability in the LAN to cause service abnormal on affected devices.Affected product versions include:HiRouter-CD30-10 version 10.0.2.5;HiRouter-CT31-10 version 10.0.2.20;WS5200-12 version 10.0.1.9;WS5281-10 version 10.0.5.10;WS5800-10 version 10.0.3.25;WS7100-10 version 10.0.5.21;WS7200-10 version 10.0.5.21.
Vendor | Product | Version | CPE |
---|---|---|---|
huawei | hirouter-cd30-10 | - | cpe:2.3:h:huawei:hirouter-cd30-10:-:*:*:*:*:*:*:* |
huawei | hirouter-cd30-10_firmware | * | cpe:2.3:o:huawei:hirouter-cd30-10_firmware:*:*:*:*:*:*:*:* |
huawei | hirouter-ct31-10 | - | cpe:2.3:h:huawei:hirouter-ct31-10:-:*:*:*:*:*:*:* |
huawei | hirouter-ct31-10_firmware | * | cpe:2.3:o:huawei:hirouter-ct31-10_firmware:*:*:*:*:*:*:*:* |
huawei | ws5200-12 | - | cpe:2.3:h:huawei:ws5200-12:-:*:*:*:*:*:*:* |
huawei | ws5200-12_firmware | * | cpe:2.3:o:huawei:ws5200-12_firmware:*:*:*:*:*:*:*:* |
huawei | ws5281-10 | - | cpe:2.3:h:huawei:ws5281-10:-:*:*:*:*:*:*:* |
huawei | ws5281-10_firmware | * | cpe:2.3:o:huawei:ws5281-10_firmware:*:*:*:*:*:*:*:* |
huawei | ws5800-10 | - | cpe:2.3:h:huawei:ws5800-10:-:*:*:*:*:*:*:* |
huawei | ws5800-10_firmware | * | cpe:2.3:o:huawei:ws5800-10_firmware:*:*:*:*:*:*:*:* |
[
{
"product": "HiRouter-CD30-10;HiRouter-CT31-10;WS5200-12;WS5281-10;WS5800-10;WS7100-10;WS7200-10",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "10.0.2.5"
},
{
"status": "affected",
"version": "10.0.2.20"
},
{
"status": "affected",
"version": "10.0.1.9"
},
{
"status": "affected",
"version": "10.0.5.10"
},
{
"status": "affected",
"version": "10.0.3.25"
},
{
"status": "affected",
"version": "10.0.5.21"
}
]
}
]
CVSS2
Attack Vector
ADJACENT_NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:A/AC:L/Au:N/C:N/I:N/A:P
CVSS3
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
Confidence
High
EPSS
Percentile
25.0%