Details of VAR-202108-2322

ID

VAR-202108-2322

TITLE

Command execution vulnerability exists in the intelligent edge gateway of China Mobile Communications Group Co., Ltd.

Trust: 0.6

sources: CNVD: CNVD-2021-46854

DESCRIPTION

China Mobile Communications Corporation is the largest mobile communications operator in China, mainly engaged in mobile voice, data, IP telephony and multimedia services. The intelligent edge gateway of China Mobile Communications Group Co., Ltd. has a command execution vulnerability. Attackers can use this vulnerability to execute arbitrary commands.

Trust: 0.6

sources: CNVD: CNVD-2021-46854

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2021-46854

AFFECTED PRODUCTS

vendor:

mobile group

model:

intelligent edge gateway

scope:

version:

Trust: 0.6

sources: CNVD: CNVD-2021-46854

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD:	CNVD-2021-46854
value:	HIGH
Trust: 0.6

CNVD:	CNVD-2021-46854
severity:	HIGH
baseScore:	7.1
vectorString:	AV:N/AC:H/AU:S/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	HIGH
authentication:	SINGLE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	3.9
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

sources: CNVD: CNVD-2021-46854

EXTERNAL IDS

db:

CNVD

id:

CNVD-2021-46854

Trust: 0.6

sources: CNVD: CNVD-2021-46854

SOURCES

db:

CNVD

id:

CNVD-2021-46854

LAST UPDATE DATE

2022-05-04T10:25:18.431000+00:00

SOURCES UPDATE DATE

db:

CNVD

id:

CNVD-2021-46854

date:

2021-07-03T00:00:00

SOURCES RELEASE DATE

db:

CNVD

id:

CNVD-2021-46854

date:

2021-08-05T00:00:00