CVE-2017-8176

EPSS 0.18%
Published 20.03.2018 15:29:00
Last modified 21.11.2024 03:33:28
Source psirt@huawei.com
Teams watchlist Login
Open Login

Huawei IPTV STB with earlier than IPTV STB V100R003C01LMYTa6SPC001 versions has an authentication bypass vulnerability. An attacker could exploit this vulnerability to access the serial interface and modify the configuration. Successful exploit could lead to the authentication bypass and view channels by free.

Affected products Warnungen 0 Metrics 3 CWE 0 References 5

Data is provided by the National Vulnerability Database (NVD)

Huawei ≫ Iptv Stb Firmware Version < v100r003c01lmyta6spc001

Huawei ≫ Iptv Stb Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.18%	0.397

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.5	3.9	3.6	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:P/I:N/A:N

http://security.my/post/165370836947/cve-2017-8176

Third Party Advisory

http://support.huawei.com/carrier/navi?coltype=software?lang=en#col=software&detailId=PBI1-22570793&path=PBI1-21262245/PBI1-22317450/PBI1-22317491/PBI1-19974608/PBI1-14715&lang=en%3B

https://nvd.nist.gov/vuln/detail/CVE-2017-8176

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2017-8176

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2017-8176

EUVD