Details of VAR-202104-2032

ID

VAR-202104-2032

TITLE

Unauthorized access vulnerability exists in the MAS mobile proxy server of China Mobile Communications Co., Ltd.

Trust: 0.6

sources: CNVD: CNVD-2021-17316

DESCRIPTION

MAS mobile proxy server is an access tool that assists enterprises in realizing wireless applications in their original business systems. The MAS mobile proxy server of China Mobile Communications Co., Ltd. has an unauthorized access vulnerability. Attackers can use this vulnerability to access the background control interface and restart the device.

Trust: 0.6

sources: CNVD: CNVD-2021-17316

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2021-17316

AFFECTED PRODUCTS

vendor:

model:

mobile communications limited mas mobile proxy server

scope:

version:

2.0

Trust: 0.6

sources: CNVD: CNVD-2021-17316

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD:	CNVD-2021-17316
value:	MEDIUM
Trust: 0.6

CNVD:	CNVD-2021-17316
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

sources: CNVD: CNVD-2021-17316

EXTERNAL IDS

db:

CNVD

id:

CNVD-2021-17316

Trust: 0.6

sources: CNVD: CNVD-2021-17316

SOURCES

db:

CNVD

id:

CNVD-2021-17316

LAST UPDATE DATE

2022-05-04T10:10:36.199000+00:00

SOURCES UPDATE DATE

db:

CNVD

id:

CNVD-2021-17316

date:

2021-03-22T00:00:00

SOURCES RELEASE DATE

db:

CNVD

id:

CNVD-2021-17316

date:

2021-04-10T00:00:00