CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L
AI Score
Confidence
High
EPSS
Percentile
39.8%
Huawei DP300, V500R002C00, RP200, V500R002C00, V600R006C00, RSE6500, V500R002C00, TE30, V100R001C02, V100R001C10, V500R002C00, V600R006C00, TE40, V500R002C00, V600R006C00, TE50, V500R002C00, V600R006C00, TE60, V100R001C01, V100R001C10, V500R002C00, V600R006C00, TX50, V500R002C00, V600R006C00, VP9660, V500R002C00, V500R002C10, ViewPoint 8660, V100R008C03, ViewPoint 9030, V100R011C02, V100R011C03, Viewpoint 8660, V100R008C03 have an out-of-bounds read vulnerability. An attacker has to control the peer device and send specially crafted messages to the affected products. Due to insufficient input validation, successful exploit may cause some service abnormal.
Vendor | Product | Version | CPE |
---|---|---|---|
huawei | dp300_firmware | v500r002c00 | cpe:2.3:o:huawei:dp300_firmware:v500r002c00:*:*:*:*:*:*:* |
huawei | dp300 | - | cpe:2.3:h:huawei:dp300:-:*:*:*:*:*:*:* |
huawei | rp200_firmware | v500r002c00 | cpe:2.3:o:huawei:rp200_firmware:v500r002c00:*:*:*:*:*:*:* |
huawei | rp200_firmware | v600r006c00 | cpe:2.3:o:huawei:rp200_firmware:v600r006c00:*:*:*:*:*:*:* |
huawei | rp200 | - | cpe:2.3:h:huawei:rp200:-:*:*:*:*:*:*:* |
huawei | rse6500_firmware | v500r002c00 | cpe:2.3:o:huawei:rse6500_firmware:v500r002c00:*:*:*:*:*:*:* |
huawei | rse6500 | - | cpe:2.3:h:huawei:rse6500:-:*:*:*:*:*:*:* |
huawei | te30_firmware | v100r001c02 | cpe:2.3:o:huawei:te30_firmware:v100r001c02:*:*:*:*:*:*:* |
huawei | te30_firmware | v100r001c10 | cpe:2.3:o:huawei:te30_firmware:v100r001c10:*:*:*:*:*:*:* |
huawei | te30_firmware | v500r002c00 | cpe:2.3:o:huawei:te30_firmware:v500r002c00:*:*:*:*:*:*:* |
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L
AI Score
Confidence
High
EPSS
Percentile
39.8%