CVE-2016-7108

CWE-200 — Information Exposure4 documents4 sources
Severity
6.5MEDIUM
EPSS
0.1%
top 72.99%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Huawei UMA
Timeline
PublishedSep 7
Latest updateMay 17

Description

Huawei Unified Maintenance Audit (UMA) before V200R001C00SPC200 SPH206 allows remote authenticated users to obtain the MD5 hashes of arbitrary user passwords via unspecified vectors.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:NExploitability: 2.8 | Impact: 3.6

Affected Packages1 packages

â–¶NVDhuawei/umav200r001c00spc200

🔴Vulnerability Details

3
GHSA
GHSA-m74m-xhqj-whgq: Huawei Unified Maintenance Audit (UMA) before V200R001C00SPC200 SPH206 allows remote authenticated users to obtain the MD5 hashes of arbitrary user pa↗2022-05-17
â–¶
OSV
nagios3 vulnerabilities↗2017-04-03
â–¶
CVEList
CVE-2016-7108: Huawei Unified Maintenance Audit (UMA) before V200R001C00SPC200 SPH206 allows remote authenticated users to obtain the MD5 hashes of arbitrary user pa↗2016-09-07
â–¶
CVE-2016-7108 (MEDIUM CVSS 6.5) | Huawei Unified Maintenance Audit (U | cvebase.io