CVE-2017-8176

EPSS 0.18%
Veröffentlicht 20.03.2018 15:29:00
Zuletzt bearbeitet 21.11.2024 03:33:28
Quelle psirt@huawei.com
Teams Watchlist Login
Unerledigt Login

Huawei IPTV STB with earlier than IPTV STB V100R003C01LMYTa6SPC001 versions has an authentication bypass vulnerability. An attacker could exploit this vulnerability to access the serial interface and modify the configuration. Successful exploit could lead to the authentication bypass and view channels by free.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 0 Referenzen 5

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Huawei ≫ Iptv Stb Firmware Version < v100r003c01lmyta6spc001

Huawei ≫ Iptv Stb Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.18%	0.397

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.5	3.9	3.6	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:P/I:N/A:N

http://security.my/post/165370836947/cve-2017-8176

Third Party Advisory

http://support.huawei.com/carrier/navi?coltype=software?lang=en#col=software&detailId=PBI1-22570793&path=PBI1-21262245/PBI1-22317450/PBI1-22317491/PBI1-19974608/PBI1-14715&lang=en%3B

https://nvd.nist.gov/vuln/detail/CVE-2017-8176

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2017-8176

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2017-8176

EUVD