CVE-2022-45963

h3c firewall <= 3.10 ESS6703 has a privilege bypass vulnerability.

Affected products Warnungen 0 Metrics 3 CWE 1 References 4

Data is provided by the National Vulnerability Database (NVD)

H3c ≫ Secpath F5030 Firmware Version <= 3.10_ess6703

H3c ≫ Secpath F5030 Version-

H3c ≫ Secpath F5060 Firmware Version <= 3.10_ess6703

H3c ≫ Secpath F5060 Version-

H3c ≫ Secpath F5080 Firmware Version <= 3.10_ess6703

H3c ≫ Secpath F5080 Version-

H3c ≫ Secpath F5030-d Firmware Version <= 3.10_ess6703

H3c ≫ Secpath F5030-d Version-

H3c ≫ Secpath F5060-d Firmware Version <= 3.10_ess6703

H3c ≫ Secpath F5060-d Version-

H3c ≫ Secpath F5080-d Firmware Version <= 3.10_ess6703

H3c ≫ Secpath F5080-d Version-

H3c ≫ Secpath F500-6gw Firmware Version <= 3.10_ess6703

H3c ≫ Secpath F500-6gw Version-

H3c ≫ Secpath F5010 Firmware Version <= 3.10_ess6703

H3c ≫ Secpath F5010 Version-

H3c ≫ Secpath F5020 Firmware Version <= 3.10_ess6703

H3c ≫ Secpath F5020 Version-

H3c ≫ Secpath F5040 Firmware Version <= 3.10_ess6703

H3c ≫ Secpath F5040 Version-

H3c ≫ Secpath F100-c-g3 Firmware Version <= 3.10_ess6703

H3c ≫ Secpath F100-c-g3 Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.04%	0.109

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	9.8	3.9	5.9	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
134c704f-9b21-4f2e-91b3-4a467353bcc0	9.8	3.9	5.9	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-269 Improper Privilege Management

The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

Third Party Advisory

CVE Source (NVD)

CVE Source (JSON)

EUVD