Sign-up

ID

VAR-201912-2004


TITLE

H3C ACG1000-M Switch Has Weak Password Vulnerability

Trust: 0.6

sources: CNVD: CNVD-2019-43882

DESCRIPTION

Xinhua San Technology Co., Ltd. has the overall capabilities of a full range of digital infrastructures such as computing, storage, networking, and security, providing cloud computing, big data, intelligent connectivity, information security, new security, Internet of Things, edge computing, artificial intelligence, 5G, etc. One-stop digital solutions, as well as end-to-end technical services. H3C ACG1000-M switch has weak password vulnerability. Allows an attacker to log in to the background of the system to obtain sensitive information.

Trust: 0.6

sources: CNVD: CNVD-2019-43882

IOT TAXONOMY

category:['Network device']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2019-43882

AFFECTED PRODUCTS

vendor:xinhua sanmodel:hua san acg1000-m switchscope: - version: -

Trust: 0.6

sources: CNVD: CNVD-2019-43882

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD: CNVD-2019-43882
value: MEDIUM

Trust: 0.6

CNVD: CNVD-2019-43882
severity: MEDIUM
baseScore: 6.4
vectorString: AV:N/AC:L/AU:N/C:P/I:P/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: 10.0
impactScore: 4.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

sources: CNVD: CNVD-2019-43882

PATCH

title:H3C ACG1000-M Switch Has Weak Password Vulnerabilityurl:https://www.cnvd.org.cn/patchinfo/show/188943

Trust: 0.6

sources: CNVD: CNVD-2019-43882

EXTERNAL IDS

db:CNVDid:CNVD-2019-43882

Trust: 0.6

sources: CNVD: CNVD-2019-43882

SOURCES

db:CNVDid:CNVD-2019-43882

LAST UPDATE DATE

2022-05-04T10:15:19.456000+00:00


SOURCES UPDATE DATE

db:CNVDid:CNVD-2019-43882date:2019-12-26T00:00:00

SOURCES RELEASE DATE

db:CNVDid:CNVD-2019-43882date:2019-12-21T00:00:00