CVE-2023-52718 — Unprotected Alternate Channel in Huawei Pt9030-15

CWE-420 — Unprotected Alternate Channel3 documents3 sources

Severity

8.1HIGHNVD

CNA6.4

EPSS

0.0%

top 93.98%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Huawei Pt9030-15 Huawei Ws7206-10 Huawei Ws7290-15 +15 more

Timeline

PublishedDec 28

Description

A connection hijacking vulnerability exists in some Huawei home routers. Successful exploitation of this vulnerability may cause DoS or information leakage.(Vulnerability ID:HWPSIRT-2023-34408) This vulnerability has been assigned a (CVE)ID:CVE-2023-52718

CVSS vector

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:HExploitability: 2.8 | Impact: 5.2

Affected Packages18 packages

▶CVEListV5huawei/pt9030-153.0.3.266

▶CVEListV5huawei/ws7206-1011.0.5.19, 2.1.0.203+1

▶CVEListV5huawei/ws7290-153.0.3.266

▶CVEListV5huawei/ws8000-10WS8000-16 3.0.3.236

▶CVEListV5huawei/ws8001-103.0.3.242

🔴Vulnerability Details

GHSA

GHSA-8jh8-6h58-693c: A connection hijacking vulnerability exists in some Huawei home routers↗2024-12-28

▶

CVEList

CVE-2023-52718: A connection hijacking vulnerability exists in some Huawei home routers↗2024-12-28

▶