Sign-up

ID

VAR-201904-1632


TITLE

Information leak vulnerability exists in China Unicom router gateway equipment

Trust: 0.6

sources: CNVD: CNVD-2019-08189

DESCRIPTION

China United Network Communications Group Co., Ltd. ("China Unicom" for short) is a telecommunications operator in China. An information disclosure vulnerability exists in China Unicom's router and gateway devices. The gateway management page allows external network access, and can directly access the internal network device information through the external network IP address access connection.

Trust: 0.6

sources: CNVD: CNVD-2019-08189

IOT TAXONOMY

category:['Network device']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2019-08189

AFFECTED PRODUCTS

vendor: - model:unicom china unicom ftth terminal hg6201uscope: - version: -

Trust: 0.6

sources: CNVD: CNVD-2019-08189

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD: CNVD-2019-08189
value: LOW

Trust: 0.6

CNVD: CNVD-2019-08189
severity: LOW
baseScore: 3.3
vectorString: AV:A/AC:L/AU:N/C:P/I:N/A:N
accessVector: ADJACENT_NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 6.5
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

sources: CNVD: CNVD-2019-08189

PATCH

title:Information leak vulnerability exists in China Unicom router gateway equipmenturl:https://www.cnvd.org.cn/patchinfo/show/155833

Trust: 0.6

sources: CNVD: CNVD-2019-08189

EXTERNAL IDS

db:CNVDid:CNVD-2019-08189

Trust: 0.6

sources: CNVD: CNVD-2019-08189

SOURCES

db:CNVDid:CNVD-2019-08189

LAST UPDATE DATE

2022-05-04T08:36:14.803000+00:00


SOURCES UPDATE DATE

db:CNVDid:CNVD-2019-08189date:2019-04-01T00:00:00

SOURCES RELEASE DATE

db:CNVDid:CNVD-2019-08189date:2019-04-01T00:00:00