ID
VAR-201707-1349
TITLE
SNMP Protocol Community String Authentication Bypass Vulnerability in Lenovo NetPower V Firewall
Trust: 0.6
DESCRIPTION
Lenovo PowerV Firewall is a comprehensive UTM that integrates firewall, IPSec VPN, SSL VPN, intrusion detection and protection system, antivirus, vulnerability scanning, active defense, flow control, log audit, and centralized management. Lenovo NetPower V firewall has SNMP protocol community string authentication permission bypass vulnerability, allowing attackers to use arbitrary strings or integer values to bypass SNMP access control and write arbitrary strings in MIB (Management Information Base) To get sensitive information about the device.
Trust: 0.6
IOT TAXONOMY
| category: | ['Network device'] | sub_category: | - | Trust: 0.6 |
AFFECTED PRODUCTS
| vendor: | wangyu nebula information | model: | power firewall | scope: | eq | version: | v | Trust: 0.6 |
CVSS
SEVERITY | CVSSV2 | CVSSV3 | ||||||||||||||||||||||||||||||||||||||||||
|
|
PATCH
| title: | SNMP Protocol Community String Authentication Bypass Vulnerability in Lenovo NetPower V Firewall | url: | https://www.cnvd.org.cn/patchinfo/show/93987 | Trust: 0.6 |
EXTERNAL IDS
| db: | CNVD | id: | CNVD-2017-07102 | Trust: 0.6 |
SOURCES
| db: | CNVD | id: | CNVD-2017-07102 |
LAST UPDATE DATE
2022-05-04T09:39:29.149000+00:00
SOURCES UPDATE DATE
| db: | CNVD | id: | CNVD-2017-07102 | date: | 2017-05-26T00:00:00 |
SOURCES RELEASE DATE
| db: | CNVD | id: | CNVD-2017-07102 | date: | 2017-07-04T00:00:00 |