ID

VAR-202105-1658


TITLE

New H3C Technology Co., Ltd. ER5200G2, ER3100G2, ER3260G2 have weak password vulnerabilities

Trust: 0.6

sources: CNVD: CNVD-2021-24946

DESCRIPTION

ER5200G2, ER3100G2, and ER3260G2 are a new generation of high-performance enterprise-class routers launched by New H3C Technology Co., Ltd. New H3C Technology Co., Ltd. ER5200G2, ER3100G2, and ER3260G2 have weak password vulnerabilities, which can be exploited by attackers to obtain sensitive information.

Trust: 0.6

sources: CNVD: CNVD-2021-24946

IOT TAXONOMY

category:['Network device']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2021-24946

AFFECTED PRODUCTS

vendor:new h3cmodel:er5200g2scope: - version: -

Trust: 0.6

vendor:new h3cmodel:er3100g2scope: - version: -

Trust: 0.6

vendor:new h3cmodel:er3260g2scope: - version: -

Trust: 0.6

sources: CNVD: CNVD-2021-24946

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD: CNVD-2021-24946
value: MEDIUM

Trust: 0.6

CNVD: CNVD-2021-24946
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

sources: CNVD: CNVD-2021-24946

EXTERNAL IDS

db:CNVDid:CNVD-2021-24946

Trust: 0.6

sources: CNVD: CNVD-2021-24946

SOURCES

db:CNVDid:CNVD-2021-24946

LAST UPDATE DATE

2022-05-04T08:33:00.618000+00:00


SOURCES UPDATE DATE

db:CNVDid:CNVD-2021-24946date:2021-04-06T00:00:00

SOURCES RELEASE DATE

db:CNVDid:CNVD-2021-24946date:2021-05-09T00:00:00