Details of VAR-202105-1589

ID

VAR-202105-1589

TITLE

A weak password vulnerability exists in the AR web management platform

Trust: 0.6

sources: CNVD: CNVD-2021-30114

DESCRIPTION

The business of Huawei Technologies Co., Ltd. includes switches, transmission equipment, data communication equipment, broadband multimedia equipment, power supplies, wireless communication equipment, microelectronics products, software, etc. The AR Web management platform has a weak password vulnerability, which can be exploited by attackers to obtain sensitive information.

Trust: 0.6

sources: CNVD: CNVD-2021-30114

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2021-30114

AFFECTED PRODUCTS

vendor:

huawei

model:

ar web management platform ar208e

scope:

version:

Trust: 0.6

sources: CNVD: CNVD-2021-30114

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD:	CNVD-2021-30114
value:	MEDIUM
Trust: 0.6

CNVD:	CNVD-2021-30114
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

sources: CNVD: CNVD-2021-30114

PATCH

title:

Patch for A weak password vulnerability exists in the AR web management platform

url:

https://www.cnvd.org.cn/patchinfo/show/263451

Trust: 0.6

sources: CNVD: CNVD-2021-30114

EXTERNAL IDS

db:

CNVD

id:

CNVD-2021-30114

Trust: 0.6

sources: CNVD: CNVD-2021-30114

SOURCES

db:

CNVD

id:

CNVD-2021-30114

LAST UPDATE DATE

2022-05-04T10:14:47.206000+00:00

SOURCES UPDATE DATE

db:

CNVD

id:

CNVD-2021-30114

date:

2021-05-03T00:00:00

SOURCES RELEASE DATE

db:

CNVD

id:

CNVD-2021-30114

date:

2021-05-28T00:00:00