CVE-2023-5142

3.7LOW

A vulnerability classified as problematic was found in H3C GR-1100-P, GR-1108-P, GR-1200W, GR-1800AX, GR-2200, GR-3200, GR-5200, GR-8300, ER2100n, ER2200G2, ER3200G2, ER3260G2, ER5100G2, ER5200G2 and

게시됨: 9/24/2023업데이트됨: 11/21/2024
NVD에서 보기MITRE에서 보기

설명

A vulnerability classified as problematic was found in H3C GR-1100-P, GR-1108-P, GR-1200W, GR-1800AX, GR-2200, GR-3200, GR-5200, GR-8300, ER2100n, ER2200G2, ER3200G2, ER3260G2, ER5100G2, ER5200G2 and ER6300G2 up to 20230908. This vulnerability affects unknown code of the file /userLogin.asp of the component Config File Handler. The manipulation leads to path traversal. The attack can be initiated remotely. The complexity of an attack is rather high. The exploitation appears to be difficult. The exploit has been disclosed to the public and may be used. VDB-240238 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

AI 분석AI 기반

영향받는 제품

h3cgr-1100-p_firmware
h3cgr-1100-p
-
h3cgr-1108-p_firmware
h3cgr-1108-p
-
h3cgr-1200w_firmware
h3cgr-1200w
-
h3cgr-1800ax_firmware
h3cgr-1800ax
-
h3cgr-2200_firmware
h3cgr-2200
-
h3cgr-3200_firmware
h3cgr-3200
-
h3cgr-5200_firmware
h3cgr-5200
-
h3cgr-8300_firmware
h3cgr-8300
-
h3cer3260g2_firmware
h3cer3260g2
-
h3cer5200g2_firmware
h3cer5200g2
-
h3cer3200g2_firmware
h3cer3200g2
-
h3cer2100n_firmware
h3cer2100n
-
h3cer6300g2_firmware
h3cer6300g2
-
h3cer5100g2_firmware
h3cer5100g2
-
h3cer2200g2_firmware
h3cer2200g2
-

참조