CVE-2018-7900

{"id": "CVE-2018-7900", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:S/C:P/I:N/A:N", "authentication": "SINGLE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV30": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.0", "baseScore": 6.5, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 3.6, "exploitabilityScore": 2.8}]}, "published": "2019-01-02T16:29:00.217", "references": [{"url": "http://www.huawei.com/en/psirt/security-notices/huawei-sn-20181219-01-hg-en", "tags": ["Vendor Advisory"], "source": "psirt@huawei.com"}, {"url": "https://blog.newskysecurity.com/information-disclosure-vulnerability-cve-2018-7900-makes-it-easy-for-attackers-to-find-huawei-3e7039b6f44f", "tags": ["Third Party Advisory"], "source": "psirt@huawei.com"}, {"url": "http://www.huawei.com/en/psirt/security-notices/huawei-sn-20181219-01-hg-en", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://blog.newskysecurity.com/information-disclosure-vulnerability-cve-2018-7900-makes-it-easy-for-attackers-to-find-huawei-3e7039b6f44f", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-200"}]}], "descriptions": [{"lang": "en", "value": "There is an information leak vulnerability in some Huawei HG products. An attacker may obtain information about the HG device by exploiting this vulnerability."}, {"lang": "es", "value": "Hay una vulnerabilidad de fuga de informaci\u00f3n en algunos productos Huawei HG. Un atacante podr\u00eda obtener informaci\u00f3n sobre el dispositivo HG explotando esta vulnerabilidad."}], "lastModified": "2024-11-21T04:12:56.553", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:huawei:hg8010h_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2A136EB1-9A7C-42C9-A20C-B6B75B237D4E"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:huawei:hg8010h:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "2F89881E-F064-48D4-96DD-733245122AD4"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:huawei:hg8040h_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A6A8D0D1-EE7C-462A-B1E5-51C3563303F9"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:huawei:hg8040h:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "1C24A81F-0B40-44B6-BAF8-954E8F8F2B48"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:huawei:hg8110h_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "66E178C8-9337-4D57-8222-0DF26BC68860"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:huawei:hg8110h:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "D2865C75-6B9E-44A7-BAFF-8EBE768C7EB6"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:huawei:hg8240h_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7EBA1775-DF6C-49FB-AED4-CA49D0D6E07A"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:huawei:hg8240h:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "5FEBC77D-C0B7-430B-8AC7-84D2E876884D"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:huawei:hg8242h_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "797437B5-B8FC-4E47-86A2-2C0B8F442F17"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:huawei:hg8242h:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "827A317B-8E6C-4B7E-A8F2-F805FB4F721D"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:huawei:hg8045q_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B6C216FC-8BD3-4BE9-9F7C-E4B7B99A655D"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:huawei:hg8045q:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "23E356D4-C4A7-4468-AAA4-F69EB4F45562"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "psirt@huawei.com"}