6.5
CVE-2018-7900
- EPSS 0.19%
- Published 02.01.2019 16:29:00
- Last modified 21.11.2024 04:12:56
- Source psirt@huawei.com
- Teams watchlist Login
- Open Login
There is an information leak vulnerability in some Huawei HG products. An attacker may obtain information about the HG device by exploiting this vulnerability.
Data is provided by the National Vulnerability Database (NVD)
Huawei ≫ Hg8010h Firmware Version-
Huawei ≫ Hg8040h Firmware Version-
Huawei ≫ Hg8110h Firmware Version-
Huawei ≫ Hg8240h Firmware Version-
Huawei ≫ Hg8242h Firmware Version-
Huawei ≫ Hg8045q Firmware Version-
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.19% | 0.407 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 6.5 | 2.8 | 3.6 |
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
|
| nvd@nist.gov | 4 | 8 | 2.9 |
AV:N/AC:L/Au:S/C:P/I:N/A:N
|
CWE-200 Exposure of Sensitive Information to an Unauthorized Actor
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.