Details of VAR-202107-1694

ID

VAR-202107-1694

TITLE

Unicom optical modem HG220-U has unauthorized access vulnerability

Trust: 0.6

sources: CNVD: CNVD-2021-40195

DESCRIPTION

China United Network Communications Group Co., Ltd. (abbreviated as "China Unicom") is mainly engaged in fixed communication services, mobile communication services, domestic and international communication facilities service services, data communication services, network access services, various telecommunication value-added services, and communication information Business-related system integration business, etc. Unicom Optical Cat HG220-U has an unauthorized access vulnerability, which can be exploited by attackers to obtain sensitive information.

Trust: 0.6

sources: CNVD: CNVD-2021-40195

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2021-40195

AFFECTED PRODUCTS

vendor:

united network group

model:

unicom optical cat hg220-u

scope:

version:

Trust: 0.6

sources: CNVD: CNVD-2021-40195

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD:	CNVD-2021-40195
value:	LOW
Trust: 0.6

CNVD:	CNVD-2021-40195
severity:	LOW
baseScore:	3.3
vectorString:	AV:A/AC:L/AU:N/C:P/I:N/A:N
accessVector:	ADJACENT_NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	6.5
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

sources: CNVD: CNVD-2021-40195

EXTERNAL IDS

db:

CNVD

id:

CNVD-2021-40195

Trust: 0.6

sources: CNVD: CNVD-2021-40195

SOURCES

db:

CNVD

id:

CNVD-2021-40195

LAST UPDATE DATE

2022-05-04T09:37:42.069000+00:00

SOURCES UPDATE DATE

db:

CNVD

id:

CNVD-2021-40195

date:

2021-06-08T00:00:00

SOURCES RELEASE DATE

db:

CNVD

id:

CNVD-2021-40195

date:

2021-07-11T00:00:00