CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:S/C:P/I:N/A:N
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
AI Score
Confidence
High
EPSS
Percentile
43.4%
Huawei AR routers with software before V200R007C00SPC100; Quidway S9300 routers with software before V200R009C00; S12700 routers with software before V200R008C00SPC500; S9300, Quidway S5300, and S5300 routers with software before V200R007C00; and S5700 routers with software before V200R007C00SPC500 makes it easier for remote authenticated administrators to obtain encryption keys and ciphertext passwords via vectors related to key storage.
Vendor | Product | Version | CPE |
---|---|---|---|
huawei | quidway_s5300_firmware | v200r001c00spc300 | cpe:2.3:o:huawei:quidway_s5300_firmware:v200r001c00spc300:*:*:*:*:*:*:* |
huawei | quidway_s5300 | - | cpe:2.3:h:huawei:quidway_s5300:-:*:*:*:*:*:*:* |
huawei | quidway_s9300_firmware | v200r001c00spc300 | cpe:2.3:o:huawei:quidway_s9300_firmware:v200r001c00spc300:*:*:*:*:*:*:* |
huawei | quidway_s9300_firmware | v200r002c00spc100 | cpe:2.3:o:huawei:quidway_s9300_firmware:v200r002c00spc100:*:*:*:*:*:*:* |
huawei | quidway_s9300_firmware | v200r003c00spc500 | cpe:2.3:o:huawei:quidway_s9300_firmware:v200r003c00spc500:*:*:*:*:*:*:* |
huawei | quidway_s9300 | - | cpe:2.3:h:huawei:quidway_s9300:-:*:*:*:*:*:*:* |
huawei | s5700_firmware | v200r001c00 | cpe:2.3:o:huawei:s5700_firmware:v200r001c00:*:*:*:*:*:*:* |
huawei | s5700_firmware | v200r002c00 | cpe:2.3:o:huawei:s5700_firmware:v200r002c00:*:*:*:*:*:*:* |
huawei | s5700_firmware | v200r003c00 | cpe:2.3:o:huawei:s5700_firmware:v200r003c00:*:*:*:*:*:*:* |
huawei | s5700_firmware | v200r005c00 | cpe:2.3:o:huawei:s5700_firmware:v200r005c00:*:*:*:*:*:*:* |
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:S/C:P/I:N/A:N
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
AI Score
Confidence
High
EPSS
Percentile
43.4%