Lucene search

[email protected]NVD:CVE-2014-3222

HistoryApr 02, 2017 - 8:59 p.m.

CVE-2014-3222

2017-04-0220:59:00

CWE-264

[email protected]

web.nvd.nist.gov

CVSS2

6.6

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:C/I:C/A:P

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS

0.001

Percentile

27.8%

JSON

In Huawei eSpace Meeting with software V100R001C03SPC201 and the earlier versions, attackers that obtain the permissions assigned to common users can elevate privileges to access and set specific key resources.

Affected configurations

Nvd

Node

huaweiespace_meetingRange≤v100r001c03spc201

VendorProductVersionCPE
huaweiespace_meeting*cpe:2.3:a:huawei:espace_meeting:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
huawei	espace_meeting	*	cpe:2.3:a:huawei:espace_meeting::::::::

References

www.huawei.com/en/psirt/security-advisories/hw-329170

CVSS2

6.6

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:C/I:C/A:P

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS

0.001

Percentile

27.8%

JSON

Related for NVD:CVE-2014-3222

exploitdb1 zeroscience1 prion1 huawei1 cve1 cvelist1