Design/Logic Flaw

2016-09-0719:28:00

PRIOn knowledge base

www.prio-n.com

7.3 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

46.5%

JSON

Huawei S7700, S9300, S9700, and S12700 devices with software before V200R008C00SPC500 use random numbers with insufficient entropy to generate self-signed certificates, which makes it easier for remote attackers to discover private keys by leveraging knowledge of a certificate.

CPENameOperatorVersion
s7700_firmwareeq200r3c0-v
s7700_firmwareeq200r5c0-v
s9300_firmwareeq200r3c0-v
s9300_firmwareeq200r5c0-v
s9700_firmwareeq200r3c0-v
s9700_firmwareeq200r5c0-v
s12700eq200r5c0-v

Name	Operator	Version
s7700_firmware	eq	200r3c0-v
s7700_firmware	eq	200r5c0-v
s9300_firmware	eq	200r3c0-v
s9300_firmware	eq	200r5c0-v
s9700_firmware	eq	200r3c0-v
s9700_firmware	eq	200r5c0-v
s12700	eq	200r5c0-v