CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:N/I:N/A:P
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
EPSS
Percentile
34.4%
MAX PRESENCE V100R001C00, TP3106 V100R002C00, TP3206 V100R002C00 have an out-of-bounds read vulnerability in H323 protocol. An attacker logs in to the system as a user and send crafted packets to the affected products. Due to insufficient verification of the packets, successful exploit will cause process reboot.
Vendor | Product | Version | CPE |
---|---|---|---|
huawei | max_presence_firmware | v100r001c00 | cpe:2.3:o:huawei:max_presence_firmware:v100r001c00:*:*:*:*:*:*:* |
huawei | max_presence | - | cpe:2.3:h:huawei:max_presence:-:*:*:*:*:*:*:* |
huawei | tp3106_firmware | v100r002c00 | cpe:2.3:o:huawei:tp3106_firmware:v100r002c00:*:*:*:*:*:*:* |
huawei | tp3106 | - | cpe:2.3:h:huawei:tp3106:-:*:*:*:*:*:*:* |
huawei | tp3206_firmware | v100r002c00 | cpe:2.3:o:huawei:tp3206_firmware:v100r002c00:*:*:*:*:*:*:* |
huawei | tp3206 | - | cpe:2.3:h:huawei:tp3206:-:*:*:*:*:*:*:* |
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:N/I:N/A:P
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
EPSS
Percentile
34.4%