Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
There is an improper authorization vulnerability in eCNS280 V100R005C00, V100R005C10 and eSE620X vESS V100R001C10SPC200, V100R001C20SPC200. A file access is not authorized correctly. Attacker with low access may launch privilege escalation in a specific scenario. This may compromise the normal service.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Huawei eCNS280 安全漏洞
Vulnerability Description
Huawei eCNS280是中国华为(Huawei)公司的无线宽带集群系统的核心网设备。提供传统核心网的网络功能外,还通过将网元功能虚拟化、在多网元间共享标准化硬件资源,来给各网元提供可根据实际应用的容量配置,提高网络扩容减容效率,提升业务上线效率 华为 eCNS280 存在安全漏洞,该漏洞源于文件访问未被正确授权。本地用户可以绕过目标系统上的授权过程。受影响的产品及版本如下:华为eCNS280: V100R005C00、V100R005C10。
CVSS Information
N/A
Vulnerability Type
N/A