CVE-2012-3268

CWE-522 — Insufficiently Protected Credentials3 documents3 sources

Severity

3.5LOW

EPSS

1.8%

top 17.24%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Huawei -ma5200g Huawei ATB Huawei ATN +8 more

Timeline

PublishedFeb 1

Latest updateMay 13

Description

Certain HP Access Controller, Fabric Module, Firewall, Router, Switch, and UTM Appliance products; certain HP 3Com Access Controller, Router, and Switch products; certain HP H3C Access Controller, Firewall, Router, Switch, and Switch and Route Processing Unit products; and certain Huawei Firewall/Gateway, Router, Switch, and Wireless products do not properly implement access control as defined in h3c-user.mib 2.0 and hh3c-user.mib 2.0, which allows remote authenticated users to discover credenti…

CVSS vector

AV:N/AC:M/C:P/I:N/A:NExploitability: 6.8 | Impact: 2.9

Affected Packages11 packages

▶NVDhuawei/atbv200r001c00

▶NVDhuawei/atnv200r001c01

▶NVDhuawei/me605 versions+4

▶NVDhuawei/ne20v200r005

▶NVDhuawei/cx6004 versions+3

🔴Vulnerability Details

GHSA

GHSA-hvr2-8j68-89rx: Certain HP Access Controller, Fabric Module, Firewall, Router, Switch, and UTM Appliance products; certain HP 3Com Access Controller, Router, and Swit↗2022-05-13

▶

CVEList

CVE-2012-3268: Certain HP Access Controller, Fabric Module, Firewall, Router, Switch, and UTM Appliance products; certain HP 3Com Access Controller, Router, and Swit↗2013-02-01

▶