Details of VAR-202103-1796

ID

VAR-202103-1796

TITLE

Xiamen Haiwell Technology Co., Ltd. cloud configuration software Cloud SCADA has an information disclosure vulnerability

Trust: 0.6

sources: CNVD: CNVD-2021-09660

DESCRIPTION

Xiamen Haiwei Technology Co., Ltd. is a high-tech enterprise integrating independent research and development, production, sales and service. Xiamen Haiwell Technology Co., Ltd. cloud configuration software Cloud SCADA has an information disclosure vulnerability. Attackers can use this vulnerability to obtain sensitive information.

Trust: 0.6

sources: CNVD: CNVD-2021-09660

IOT TAXONOMY

category:

['ICS']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2021-09660

AFFECTED PRODUCTS

vendor:

haiwell

model:

cloud configuration software cloud scada

scope:

version:

3.22.1.5

Trust: 0.6

sources: CNVD: CNVD-2021-09660

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD:	CNVD-2021-09660
value:	LOW
Trust: 0.6

CNVD:	CNVD-2021-09660
severity:	LOW
baseScore:	3.3
vectorString:	AV:A/AC:L/AU:N/C:P/I:N/A:N
accessVector:	ADJACENT_NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	6.5
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

sources: CNVD: CNVD-2021-09660

EXTERNAL IDS

db:

CNVD

id:

CNVD-2021-09660

Trust: 0.6

sources: CNVD: CNVD-2021-09660

SOURCES

db:

CNVD

id:

CNVD-2021-09660

LAST UPDATE DATE

2022-05-04T09:08:37.217000+00:00

SOURCES UPDATE DATE

db:

CNVD

id:

CNVD-2021-09660

date:

2021-07-15T00:00:00

SOURCES RELEASE DATE

db:

CNVD

id:

CNVD-2021-09660

date:

2021-03-11T00:00:00