Lucene search

Huawei TechnologiesHUAWEI-SA-HPPVTICFUOEC-8FFDE288

HistoryApr 17, 2024 - 12:00 a.m.

Security Advisory - Huawei PC Product Vulnerable to Improper Check for Unusual or Exceptional Conditions

2024-04-1700:00:00

Huawei Technologies

www.huawei.com

huawei

vulnerability

improper check

common privilege

os service exceptions

cve

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

6.7 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.1%

JSON

A Huawei PC product is vulnerable to improper check for unusual or exceptional conditions. An attacker with the common privilege can exploit this vulnerability. Successful exploitation of this vulnerability could cause OS service exceptions.(Vulnerability ID:HWPSIRT-2023-25233)

This vulnerability has been assigned a (CVE)ID:CVE-2023-52710

Affected configurations

Vulners

Node

huaweicuriem-wfg9bMatchota-curiem-bios-2.29

CPENameOperatorVersion
curiem-wfg9beqOTA-CurieM-BIOS-2.29

CPE	Name	Operator	Version
	curiem-wfg9b	eq	OTA-CurieM-BIOS-2.29

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

6.7 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.1%

JSON

Related for HUAWEI-SA-HPPVTICFUOEC-8FFDE288