exploitDog

CVE-2022-33735

Опубликовано: 20 сент. 2022

Источник: nvd

CVSS3: 6.5

EPSS Низкий

Описание

There is a password verification vulnerability in WS7200-10 11.0.2.13. Attackers on the LAN may use brute force cracking to obtain passwords, which may cause sensitive system information to be disclosed.

Ссылки

https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20220628-01-2eda0853-en
Vendor Advisory
https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20220628-01-2eda0853-en
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:huawei:ws7200-10_firmware:11.0.2.13:*:*:*:*:*:*:*

cpe:2.3:h:huawei:ws7200-10:-:*:*:*:*:*:*:*

EPSS

Процентиль: 13%

0.00042

Низкий

6.5 Medium

CVSS3

Дефекты

CWE-307

CWE-307

Связанные уязвимости

GHSA-rmm9-xcr8-ff62

CVSS3: 6.5

github

больше 3 лет назад

There is a password verification vulnerability in WS7200-10 11.0.2.13. Attackers on the LAN may use brute force cracking to obtain passwords, which may cause sensitive system information to be disclosed.

EPSS

Процентиль: 13%

0.00042

Низкий

6.5 Medium

CVSS3

Дефекты

CWE-307

CWE-307