CVE-2014-2273

Опубликовано: 05 дек. 2014

Источник: nvd

CVSS2: 7.2

EPSS Низкий

Описание

The hx170dec device driver in Huawei P2-6011 before V100R001C00B043 allows local users to read and write to arbitrary memory locations via unspecified vectors.

Ссылки

http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-401529.htm
Vendor Advisory
http://www.securityfocus.com/bid/71374
https://exchange.xforce.ibmcloud.com/vulnerabilities/99088
https://labs.mwrinfosecurity.com/system/assets/762/original/mwri_advisory_huawei_driver-root-exploit.pdf
Exploit
http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-401529.htm
Vendor Advisory
http://www.securityfocus.com/bid/71374
https://exchange.xforce.ibmcloud.com/vulnerabilities/99088
https://labs.mwrinfosecurity.com/system/assets/762/original/mwri_advisory_huawei_driver-root-exploit.pdf
Exploit

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:huawei:p2-6011_firmware:*:*:*:*:*:*:*:*

Версия до v100r001c00b042 (включая)

cpe:2.3:h:huawei:p2-6011:-:*:*:*:*:*:*:*

EPSS

Процентиль: 5%

0.00021

Низкий

7.2 High

CVSS2

Дефекты

CWE-264

Связанные уязвимости

GHSA-v9w5-8634-4hgp

github

больше 3 лет назад