PT-2018-6499 · Huawei · Ibmc
Published
2018-03-09
·
Updated
2019-10-03
·
CVE-2017-17323
CVSS v3.1
4.3
Medium
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N |
Name of the Vulnerable Software and Affected Versions:
Huawei iBMC versions V200R002C10 through V200R002C30
Description:
The issue is related to an improper authorization check. When a normal user attempts to access certain information that should only be accessible by an admin user, the software incorrectly performs the authorization check. This could lead to information disclosure if successfully exploited.
Recommendations:
For versions V200R002C10 through V200R002C30, apply the necessary security patches or updates to fix the improper authorization vulnerability.
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Incorrect Authorization
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ibmc