Описание
HedEx Earlier than V200R006C00 versions has an arbitrary file download vulnerability. An attacker could exploit it to download arbitrary files on a target device to cause information leak.
Ссылки
- Issue TrackingVendor Advisory
- Issue TrackingVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до v200r006c00 (исключая)
cpe:2.3:a:huawei:hedex_lite:*:*:*:*:*:*:*:*
EPSS
Процентиль: 25%
0.00088
Низкий
5.5 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-200
Связанные уязвимости
CVSS3: 5.5
github
больше 3 лет назад
HedEx Earlier than V200R006C00 versions has an arbitrary file download vulnerability. An attacker could exploit it to download arbitrary files on a target device to cause information leak.
EPSS
Процентиль: 25%
0.00088
Низкий
5.5 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-200