Sign-up

ID

VAR-202105-1676


TITLE

Multiple wireless controller products of New H3C Technology Co., Ltd. have weak password vulnerabilities

Trust: 0.6

sources: CNVD: CNVD-2021-24507

DESCRIPTION

H3C WX3510H, H3C WX2510H, H3C WX3508H, H3C WX3540H are wireless controllers of H3C Technology Co., Ltd. Several wireless controller products of New H3C Technology Co., Ltd. have weak password vulnerabilities, which can be exploited by attackers to obtain sensitive information.

Trust: 0.6

sources: CNVD: CNVD-2021-24507

IOT TAXONOMY

category:['Network device']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2021-24507

AFFECTED PRODUCTS

vendor:new h3cmodel:wx3510hscope: - version: -

Trust: 0.6

vendor:new h3cmodel:wx2510hscope: - version: -

Trust: 0.6

vendor:new h3cmodel:wx3508hscope: - version: -

Trust: 0.6

vendor:new h3cmodel:wx3540hscope: - version: -

Trust: 0.6

sources: CNVD: CNVD-2021-24507

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD: CNVD-2021-24507
value: MEDIUM

Trust: 0.6

CNVD: CNVD-2021-24507
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

sources: CNVD: CNVD-2021-24507

EXTERNAL IDS

db:CNVDid:CNVD-2021-24507

Trust: 0.6

sources: CNVD: CNVD-2021-24507

SOURCES

db:CNVDid:CNVD-2021-24507

LAST UPDATE DATE

2022-05-04T09:49:53.864000+00:00


SOURCES UPDATE DATE

db:CNVDid:CNVD-2021-24507date:2021-04-02T00:00:00

SOURCES RELEASE DATE

db:CNVDid:CNVD-2021-24507date:2021-05-06T00:00:00