Lucene search

[email protected]NVD:CVE-2021-46834

HistorySep 20, 2022 - 8:15 p.m.

CVE-2021-46834

2022-09-2020:15:09

CWE-276

[email protected]

web.nvd.nist.gov

huawei

device

task management

permission bypass

vulnerability

access

resource

jad-al50

affected product

security

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

0.0004 Low

EPSS

Percentile

12.6%

JSON

A permission bypass vulnerability in Huawei cross device task management could allow an attacker to access certain resource in the attacked devices. Affected product versions include:JAD-AL50 versions 102.0.0.225(C00E220R3P4).

Affected configurations

NVD

Node

huaweijad-al50Match-

AND

huaweijad-al50_firmwareMatch102.0.0.225\(c00e220r3p4\)

References

www.huawei.com/en/psirt/security-advisories/huawei-sa-20220819-01-7e0a6103-en

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

0.0004 Low

EPSS

Percentile

12.6%

JSON

Related for NVD:CVE-2021-46834

huawei1 prion1 cve1 cvelist1