Lucene search

K
cve[email protected]CVE-2022-37070
HistoryAug 25, 2022 - 2:15 p.m.

CVE-2022-37070

2022-08-2514:15:12
CWE-78
web.nvd.nist.gov
23
2
cve-2022-37070
h3c gr-1200w
minigrw1a0v100r006
command injection
vulnerability
nvd

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

0.018 Low

EPSS

Percentile

88.1%

H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a command injection vulnerability via the param parameter at DelL2tpLNSList.

Affected configurations

NVD
Node
h3cgr-1200w_firmwareRangeminigrw1a0v100r006
AND
h3cgr-1200wMatch-

Social References

More

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

0.018 Low

EPSS

Percentile

88.1%