Описание
Taurus-AN00B versions earlier than 10.1.0.156(C00E155R7P2) have a use-after-free (UAF) vulnerability. An authenticated, local attacker may perform specific operations to exploit this vulnerability. Successful exploitation may cause the attacker to obtain a higher privilege and compromise the service.
Уязвимые конфигурации
Конфигурация 1Версия до 10.1.0.156\(c00e155r7p2\) (исключая)
Одновременно
cpe:2.3:o:huawei:taurus-an00b_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:huawei:taurus-an00b:-:*:*:*:*:*:*:*
EPSS
Процентиль: 6%
0.00024
Низкий
6.5 Medium
CVSS3
4.6 Medium
CVSS2
Дефекты
CWE-416
Связанные уязвимости
github
больше 3 лет назад
Taurus-AN00B versions earlier than 10.1.0.156(C00E155R7P2) have a use-after-free (UAF) vulnerability. An authenticated, local attacker may perform specific operations to exploit this vulnerability. Successful exploitation may cause the attacker to obtain a higher privilege and compromise the service.
EPSS
Процентиль: 6%
0.00024
Низкий
6.5 Medium
CVSS3
4.6 Medium
CVSS2
Дефекты
CWE-416