Lucene search

[email protected]NVD:CVE-2013-4629

HistoryJun 20, 2013 - 3:55 p.m.

CVE-2013-4629

2013-06-2015:55:01

CWE-255

[email protected]

web.nvd.nist.gov

8.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:S/C:C/I:C/A:C

6.4 Medium

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

60.3%

JSON

The Huawei viewpoint VP9610 and VP9620 units for the Huawei Video Conference system do not update the Session ID upon successful establishment of a login session, which allows remote authenticated users to hijack sessions via an unspecified interception method.

Affected configurations

NVD

Node

huaweivp_9610Range≤v100r002c02b019sp05

huaweivp_9620Range≤v100r002c02b019sp05

References

www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-261327.htm

8.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:S/C:C/I:C/A:C

6.4 Medium

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

60.3%

JSON

Related for NVD:CVE-2013-4629

cve1 cvelist1 nessus1 prion1