Lucene search

Huawei TechnologiesHUAWEI-SA-20220831-01-5370A6DF

HistoryAug 31, 2022 - 12:00 a.m.

Security Advisory - Traffic Hijacking Vulnerability in Huawei Routers

2022-08-3100:00:00

Huawei Technologies

www.huawei.com

huawei

routers

traffic hijacking

vulnerability

exploitation

attackers

cve-2021-46835

4.3 Medium

CVSS3

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

0.001 Low

EPSS

Percentile

19.8%

JSON

There is a traffic hijacking vulnerability in Huawei routers. Successful exploitation of this vulnerability can cause packets to be hijacked by attackers. (Vulnerability ID: HWPSIRT-2021-21766)

This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2021-46835.

For products that have released software updates to fix this vulnerability, Huawei will release and update the Security Advisory at:

<http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20220831-01-5370a6df-en>

Affected configurations

Vulners

Node

huaweiws7200-10Match11.0.2.13

CPENameOperatorVersion
ws7200-10eq11.0.2.13

CPE	Name	Operator	Version
	ws7200-10	eq	11.0.2.13

4.3 Medium

CVSS3

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

0.001 Low

EPSS

Percentile

19.8%

JSON

Related for HUAWEI-SA-20220831-01-5370A6DF