CVE-2016-7107

CWE-284Improper Access Control3 documents3 sources
Severity
7.5HIGH
EPSS
0.1%
top 72.14%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Huawei UMA
Timeline
PublishedSep 7
Latest updateMay 17

Description

Huawei Unified Maintenance Audit (UMA) before V200R001C00SPC200 SPH206 allows remote attackers to reset arbitrary user passwords and consequently affect system data integrity via unspecified vectors.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages1 packages

NVDhuawei/umav200r001c00spc200

🔴Vulnerability Details

2
GHSA
GHSA-v5fv-jp8m-f4g2: Huawei Unified Maintenance Audit (UMA) before V200R001C00SPC200 SPH206 allows remote attackers to reset arbitrary user passwords and consequently affe2022-05-17
CVEList
CVE-2016-7107: Huawei Unified Maintenance Audit (UMA) before V200R001C00SPC200 SPH206 allows remote attackers to reset arbitrary user passwords and consequently affe2016-09-07
CVE-2016-7107 (HIGH CVSS 7.5) | Huawei Unified Maintenance Audit (U | cvebase.io