ID

VAR-202105-1668


TITLE

Bihaiwei L7 home gateway has weak password vulnerability

Trust: 0.6

sources: CNVD: CNVD-2021-25885

DESCRIPTION

Bihaiwei L7 home gateway is a home gateway launched by Beijing Bihaiwei Technology Co., Ltd. Bihaiwei L7 home gateway has weak password vulnerability. Attackers can use this vulnerability to log in to the background of the system to obtain sensitive information.

Trust: 0.6

sources: CNVD: CNVD-2021-25885

IOT TAXONOMY

category:['Network device']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2021-25885

AFFECTED PRODUCTS

vendor:bihaiweimodel:l7 home gatewayscope: - version: -

Trust: 0.6

sources: CNVD: CNVD-2021-25885

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD: CNVD-2021-25885
value: MEDIUM

Trust: 0.6

CNVD: CNVD-2021-25885
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

sources: CNVD: CNVD-2021-25885

EXTERNAL IDS

db:CNVDid:CNVD-2021-25885

Trust: 0.6

sources: CNVD: CNVD-2021-25885

SOURCES

db:CNVDid:CNVD-2021-25885

LAST UPDATE DATE

2022-05-04T09:32:26.876000+00:00


SOURCES UPDATE DATE

db:CNVDid:CNVD-2021-25885date:2021-06-08T00:00:00

SOURCES RELEASE DATE

db:CNVDid:CNVD-2021-25885date:2021-05-08T00:00:00