CVE-2023-7266

Published: Dic 28, 2024 Last Modified: Gen 13, 2025 EU-VD ID: EUVD-2023-59680

ExploitDB:

Other exploit source:

Google Dorks:

HIGH 7,5

Source: [email protected]

Attack Vector: network

Attack Complexity: low

Privileges Required: none

User Interaction: none

Scope: unchanged

Confidentiality: none

Integrity: none

Availability: high

Description

AI Translation Available

Some Huawei home routers have a connection hijacking vulnerability. Successful exploitation of this vulnerability may cause DoS or information leakage.(Vulnerability ID:HWPSIRT-2023-76605)
This vulnerability has been assigned a (CVE)ID:CVE-2023-7266

EPSS (Exploit Prediction Scoring System)

Trend Analysis

EPSS (Exploit Prediction Scoring System)

Prevede la probabilità di sfruttamento basata su intelligence sulle minacce e sulle caratteristiche della vulnerabilità.

EPSS Score

0,0011

Percentile

0,3th

Updated

EPSS Score Trend (Last 90 Days)

420

Unprotected Alternate Channel

Draft

Abstraction: Base Structure: Simple

Common Consequences

Security Scopes Affected:

Access Control

Potential Impacts:

Gain Privileges Or Assume Identity Bypass Protection Mechanism

Applicable Platforms

All platforms may be affected

View CWE Details

Operating System

Tc7001-10 Firmware by Huawei

Product Information

Vendor Huawei

Product Tc7001-10 Firmware

Version 2.0.0.336\(sp6c300\)

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:huawei:tc7001-10_firmware:2.0.0.336\(sp6c300\):*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Ws7200-10 Firmware by Huawei

Product Information

Vendor Huawei

Product Ws7200-10 Firmware

Version 3.0.3.215

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:huawei:ws7200-10_firmware:3.0.3.215:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Ws7206-10 Firmware by Huawei

Product Information

Vendor Huawei

Product Ws7206-10 Firmware

Version 4.0.0.16\(v3r2\)

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:huawei:ws7206-10_firmware:4.0.0.16\(v3r2\):*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

https://www.huawei.com/en/psirt/security-advisories/2024/hu…

Vendor Advisory

https://www.huawei.com/en/psirt/security-advisories/2024/huawei-sa-chvishhr-d61…

CVE-2023-7266

Description

EPSS (Exploit Prediction Scoring System)

EPSS (Exploit Prediction Scoring System)

EPSS Score Trend (Last 90 Days)

Unprotected Alternate Channel

Common Consequences

Applicable Platforms

Tc7001-10 Firmware by Huawei

Product Information

Ws7200-10 Firmware by Huawei

Product Information

Ws7206-10 Firmware by Huawei

Product Information

Iscriviti alla newsletter