CVE-2018-7941

Huawei iBMC V200R002C60 have an authentication bypass vulnerability. A remote attacker with low privilege may craft specific messages to upload authentication certificate to the affected products. Due to improper validation of the upload authority, successful exploit may cause privilege elevation.

Published: May 10, 2018
Updated: Apr 13, 2023
CVE: CVE-2018-7941
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 8.8
AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CVSS v2:

Severity: Medium
Score: 6.5
AV:N/AC:L/Au:S/C:P/I:P/A:P

CWEs:

CWE-287

OWASP TOP 10:

A2 - Broken Authentication

Affected Software
References

Software	From	Fixed in
huawei / ch121_v3_firmware	100r001c00	100r001c00.x
huawei / ch121l_v3_firmware	100r001c00	100r001c00.x
huawei / ch140_v3_firmware	100r001c00	100r001c00.x
huawei / ch140l_v3_firmware	100r001c00	100r001c00.x
huawei / ch220_v3_firmware	100r001c00	100r001c00.x
huawei / ch222_v3_firmware	100r001c00	100r001c00.x
huawei / ch242_v3_firmware	100r001c00	100r001c00.x
huawei / rh1288_v3_firmware	100r003c00	100r003c00.x
huawei / rh2288_v3_firmware	100r003c00	100r003c00.x
huawei / rh2288h_v3_firmware	100r003c00	100r003c00.x
huawei / xh310_v3_firmware	100r003c00	100r003c00.x
huawei / xh321_v3_firmware	100r003c00	100r003c00.x
huawei / xh620_v3_firmware	100r003c00	100r003c00.x
huawei / ch121_v5_firmware	100r001c00	100r001c00.x
huawei / ch121l_v5_firmware	100r001c00	100r001c00.x
huawei / ch242_v5_firmware	100r001c00	100r001c00.x
huawei / 1288h_v5_firmware	100r005c00	100r005c00.x
huawei / 2288h_v5_firmware	100r005c00	100r005c00.x
huawei / 2488_v5_firmware	100r005c00	100r005c00.x
huawei / xh321_v5_firmware	100r005c00	100r005c00.x

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180509-01-bypass-en

Vulnerability Database

289,599

CVE-2018-7941