Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2020-1789

Опубликовано: 18 фев. 2020
Источник: nvd
CVSS3: 6.8
CVSS2: 4.6
EPSS Низкий

Описание

Huawei OSCA-550, OSCA-550A, OSCA-550AX, and OSCA-550X products with version 1.0.1.21(SP3) have an insufficient authentication vulnerability. The software does not require a strong credential when the user trying to do certain operations. Successful exploit could allow an attacker to pass the authentication and do certain operations by a weak credential.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:huawei:osca-550_firmware:1.0.1.21\(sp3\):*:*:*:*:*:*:*
cpe:2.3:h:huawei:osca-550:-:*:*:*:*:*:*:*
Конфигурация 2

Одновременно

cpe:2.3:o:huawei:osca-550a_firmware:1.0.1.21\(sp3\):*:*:*:*:*:*:*
cpe:2.3:h:huawei:osca-550a:-:*:*:*:*:*:*:*
Конфигурация 3

Одновременно

cpe:2.3:o:huawei:osca-550ax_firmware:1.0.1.21\(sp3\):*:*:*:*:*:*:*
cpe:2.3:h:huawei:osca-550ax:-:*:*:*:*:*:*:*
Конфигурация 4

Одновременно

cpe:2.3:o:huawei:osca-550x_firmware:1.0.1.21\(sp3\):*:*:*:*:*:*:*
cpe:2.3:h:huawei:osca-550x:-:*:*:*:*:*:*:*

EPSS

Процентиль: 19%
0.00061
Низкий

6.8 Medium

CVSS3

4.6 Medium

CVSS2

Дефекты

CWE-287

Связанные уязвимости

github логотип

GHSA-ph9c-5f5m-xhgq

github
больше 3 лет назад

Huawei OSCA-550, OSCA-550A, OSCA-550AX, and OSCA-550X products with version 1.0.1.21(SP3) have an insufficient authentication vulnerability. The software does not require a strong credential when the user trying to do certain operations. Successful exploit could allow an attacker to pass the authentication and do certain operations by a weak credential.

EPSS

Процентиль: 19%
0.00061
Низкий

6.8 Medium

CVSS3

4.6 Medium

CVSS2

Дефекты

CWE-287