Lucene search

K
cve[email protected]CVE-2022-36509
HistoryAug 25, 2022 - 2:15 p.m.

CVE-2022-36509

2022-08-2514:15:11
CWE-78
web.nvd.nist.gov
29
2
cve-2022-36509
h3c
gr3200
minigr1b0v100r014
command injection vulnerability
dell2tplnslist
nvd

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

0.0005 Low

EPSS

Percentile

17.8%

H3C GR3200 MiniGR1B0V100R014 was discovered to contain a command injection vulnerability via the param parameter at DelL2tpLNSList.

Affected configurations

NVD
Node
h3cgr3200_firmwareMatchminigr1b0v100r014
AND
h3cgr3200Match-

Social References

More

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

0.0005 Low

EPSS

Percentile

17.8%

Related for CVE-2022-36509