exploitDog

CVE-2022-45874

Опубликовано: 28 дек. 2022

Источник: nvd

CVSS3: 5.5

EPSS Низкий

Описание

Huawei Aslan Children's Watch has an improper authorization vulnerability. Successful exploit could allow the attacker to access certain file.

Ссылки

https://www.huawei.com/en/psirt/security-advisories/2022/huawei-sa-iaviahcw-21a3acd8-en
Vendor Advisory
https://www.huawei.com/en/psirt/security-advisories/2022/huawei-sa-iaviahcw-21a3acd8-en
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:huawei:aslan-al10_firmware:*:*:*:*:*:*:*:*

Версия от 11.1.0.118\(c00m06\) (включая) до 11.1.0.10118\(c00m06\) (включая)

cpe:2.3:h:huawei:aslan-al10:-:*:*:*:*:*:*:*

EPSS

Процентиль: 6%

0.00024

Низкий

5.5 Medium

CVSS3

Дефекты

NVD-CWE-Other

CWE-285

Связанные уязвимости

GHSA-9vpq-m98h-94f2

CVSS3: 5.5

github

около 3 лет назад

Huawei Aslan Children's Watch has an improper authorization vulnerability. Successful exploit could allow the attacker to access certain file.

EPSS

Процентиль: 6%

0.00024

Низкий

5.5 Medium

CVSS3

Дефекты

NVD-CWE-Other

CWE-285