CVE-2022-45963
CRITICAL
9,8
Source: [email protected]
Attack Vector: network
Attack Complexity: low
Privileges Required: none
User Interaction: none
Scope: unchanged
Confidentiality: high
Integrity: high
Availability: high
Description
AI Translation Available
h3c firewall <= 3.10 ESS6703 has a privilege bypass vulnerability.
EPSS (Exploit Prediction Scoring System)
Trend Analysis
EPSS (Exploit Prediction Scoring System)
Prevede la probabilità di sfruttamento basata su intelligence sulle minacce e sulle caratteristiche della vulnerabilità.
EPSS Score
0,0034
Percentile
0,6th
Updated
EPSS Score Trend (Last 90 Days)
269
Improper Privilege Management
DraftCommon Consequences
Security Scopes Affected:
Access Control
Potential Impacts:
Gain Privileges Or Assume Identity
Applicable Platforms
All platforms may be affected
Operating System
Secpath F5030-D Firmware by H3C
Version Range Affected
To
3.10_ess6703
(inclusive)
CPE Identifier
View Detailed Analysis
cpe:2.3:o:h3c:secpath_f5030-d_firmware:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Secpath F5080 Firmware by H3C
Version Range Affected
To
3.10_ess6703
(inclusive)
CPE Identifier
View Detailed Analysis
cpe:2.3:o:h3c:secpath_f5080_firmware:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Secpath F5030 Firmware by H3C
Version Range Affected
To
3.10_ess6703
(inclusive)
CPE Identifier
View Detailed Analysis
cpe:2.3:o:h3c:secpath_f5030_firmware:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Secpath F5080-D Firmware by H3C
Version Range Affected
To
3.10_ess6703
(inclusive)
CPE Identifier
View Detailed Analysis
cpe:2.3:o:h3c:secpath_f5080-d_firmware:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Secpath F5020 Firmware by H3C
Version Range Affected
To
3.10_ess6703
(inclusive)
CPE Identifier
View Detailed Analysis
cpe:2.3:o:h3c:secpath_f5020_firmware:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Secpath F500-6Gw Firmware by H3C
Version Range Affected
To
3.10_ess6703
(inclusive)
CPE Identifier
View Detailed Analysis
cpe:2.3:o:h3c:secpath_f500-6gw_firmware:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Secpath F5060 Firmware by H3C
Version Range Affected
To
3.10_ess6703
(inclusive)
CPE Identifier
View Detailed Analysis
cpe:2.3:o:h3c:secpath_f5060_firmware:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Secpath F100-C-G3 Firmware by H3C
Version Range Affected
To
3.10_ess6703
(inclusive)
CPE Identifier
View Detailed Analysis
cpe:2.3:o:h3c:secpath_f100-c-g3_firmware:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Secpath F5040 Firmware by H3C
Version Range Affected
To
3.10_ess6703
(inclusive)
CPE Identifier
View Detailed Analysis
cpe:2.3:o:h3c:secpath_f5040_firmware:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Secpath F5060-D Firmware by H3C
Version Range Affected
To
3.10_ess6703
(inclusive)
CPE Identifier
View Detailed Analysis
cpe:2.3:o:h3c:secpath_f5060-d_firmware:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Secpath F5010 Firmware by H3C
Version Range Affected
To
3.10_ess6703
(inclusive)
CPE Identifier
View Detailed Analysis
cpe:2.3:o:h3c:secpath_f5010_firmware:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
https://gist.github.com/yinfei6/fc6478328f8c2e2bf62a631a81afb265
https://gist.github.com/yinfei6/fc6478328f8c2e2bf62a631a81afb265