Sign-up

ID

VAR-202106-2339


TITLE

Unauthorized access vulnerability exists in the operation and maintenance audit system of New H3C Technology Co., Ltd.

Trust: 0.6

sources: CNVD: CNVD-2021-37349

DESCRIPTION

New H3C Technology Co., Ltd. is committed to becoming the most reliable partner for customers' business innovation and digital transformation. The main products are routers, big data, switches, Internet of Things, cloud computing, servers, etc. The operation and maintenance audit system of New H3C Technology Co., Ltd. has an unauthorized access vulnerability, which can be exploited by attackers to obtain sensitive information.

Trust: 0.6

sources: CNVD: CNVD-2021-37349

IOT TAXONOMY

category:['IoT']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2021-37349

AFFECTED PRODUCTS

vendor:new h3cmodel:operation and maintenance audit systemscope: - version: -

Trust: 0.6

sources: CNVD: CNVD-2021-37349

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD: CNVD-2021-37349
value: MEDIUM

Trust: 0.6

CNVD: CNVD-2021-37349
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

sources: CNVD: CNVD-2021-37349

PATCH

title:Patch for Unauthorized access vulnerability exists in the operation and maintenance audit system of New H3C Technology Co., Ltd.url:https://www.cnvd.org.cn/patchinfo/show/288186

Trust: 0.6

sources: CNVD: CNVD-2021-37349

EXTERNAL IDS

db:CNVDid:CNVD-2021-37349

Trust: 0.6

sources: CNVD: CNVD-2021-37349

SOURCES

db:CNVDid:CNVD-2021-37349

LAST UPDATE DATE

2022-05-04T09:08:33.579000+00:00


SOURCES UPDATE DATE

db:CNVDid:CNVD-2021-37349date:2021-08-27T00:00:00

SOURCES RELEASE DATE

db:CNVDid:CNVD-2021-37349date:2021-06-22T00:00:00