Huawei XH321 V3 Firmware 100R003C00

CPE Details

Huawei XH321 V3 Firmware 100R003C00
huawei
xh321_v3_firmware
100r003c00
2020-02-21
18h15 +00:00
2020-02-21
18h15 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:o:huawei:xh321_v3_firmware:100r003c00:*:*:*:*:*:*:*

Informations

Vendor

huawei

Product

xh321_v3_firmware

Version

100r003c00

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2018-7949 2018-06-01 12h00 +00:00 The iBMC (Intelligent Baseboard Management Controller) of some Huawei servers have a privilege escalation vulnerability. A remote attacker may send some specially crafted login messages to the affected products. Due to improper authentication design, successful exploit enables low privileged users to get or modify passwords of highly privileged users.
8.8
High
CVE-2018-7950 2018-06-01 12h00 +00:00 The iBMC (Intelligent Baseboard Management Controller) of some Huawei servers have a JSON injection vulnerability due to insufficient input validation. An authenticated, remote attacker can launch a JSON injection to modify the password of administrator. Successful exploit may allow attackers to obtain the management privilege of the system.
8.8
High
CVE-2018-7951 2018-06-01 12h00 +00:00 The iBMC (Intelligent Baseboard Management Controller) of some Huawei servers have a JSON injection vulnerability due to insufficient input validation. An authenticated, remote attacker can launch a JSON injection to modify the password of administrator. Successful exploit may allow attackers to obtain the management privilege of the system.
8.8
High
CVE-2018-7941 2018-05-10 12h00 +00:00 Huawei iBMC V200R002C60 have an authentication bypass vulnerability. A remote attacker with low privilege may craft specific messages to upload authentication certificate to the affected products. Due to improper validation of the upload authority, successful exploit may cause privilege elevation.
8.8
High