Sign-up

ID

VAR-202106-2262


TITLE

H3C ICG 1000 has weak password vulnerability

Trust: 0.6

sources: CNVD: CNVD-2021-36272

DESCRIPTION

ICG 1000 is a gateway specially launched by H3C for small businesses. H3C ICG 1000 has a weak password vulnerability. Attackers can use this vulnerability to obtain sensitive information.

Trust: 0.6

sources: CNVD: CNVD-2021-36272

IOT TAXONOMY

category:['Network device']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2021-36272

AFFECTED PRODUCTS

vendor:new h3cmodel:icg hardware version: ver.a/software version: icg1000v102r012scope:eqversion:1000

Trust: 0.6

sources: CNVD: CNVD-2021-36272

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD: CNVD-2021-36272
value: MEDIUM

Trust: 0.6

CNVD: CNVD-2021-36272
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

sources: CNVD: CNVD-2021-36272

EXTERNAL IDS

db:CNVDid:CNVD-2021-36272

Trust: 0.6

sources: CNVD: CNVD-2021-36272

SOURCES

db:CNVDid:CNVD-2021-36272

LAST UPDATE DATE

2022-05-04T08:32:59.071000+00:00


SOURCES UPDATE DATE

db:CNVDid:CNVD-2021-36272date:2021-05-21T00:00:00

SOURCES RELEASE DATE

db:CNVDid:CNVD-2021-36272date:2021-06-13T00:00:00