Описание
Taurus-AN00B versions earlier than 10.1.0.156(C00E155R7P2) have an information disclosure vulnerability. The device does not sufficiently validate the output of device in certain specific scenario, the attacker can gain information in the victim's smartphone to launch the attack, successful exploit could cause information disclosure.
Уязвимые конфигурации
Конфигурация 1Версия до 10.1.0.156 (исключая)
Одновременно
cpe:2.3:o:huawei:taurus-an00b_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:huawei:taurus-an00b:-:*:*:*:*:*:*:*
EPSS
Процентиль: 8%
0.0003
Низкий
4.6 Medium
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-20
Связанные уязвимости
github
больше 3 лет назад
Taurus-AN00B versions earlier than 10.1.0.156(C00E155R7P2) have an information disclosure vulnerability. The device does not sufficiently validate the output of device in certain specific scenario, the attacker can gain information in the victim's smartphone to launch the attack, successful exploit could cause information disclosure.
EPSS
Процентиль: 8%
0.0003
Низкий
4.6 Medium
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-20