Free and open-source vulnerability scanner
Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.
Install NowAvailable for macOS, Windows, and Linux
Huawei VRP Data Communication: Weak Cryptography Vulnerability (huawei-sa-20171222-01-cryptography)
Information
Severity
Severity
Family
Family
CVSSv2 Base
CVSSv2 Base
CVSSv2 Vector
CVSSv2 Vector
Solution Type
Solution Type
Created
Created
Modified
Modified
Summary
Multiple Huawei products are prone to a weak cryptography vulnerability.
Insight
Insight
Due to not properly some values in the certificates, an unauthenticated remote attacker could forges a specific RSA certificate and exploits the vulnerability to pass identity authentication and logs into the target device to obtain permissions configured for the specific user name.
Affected Software
Affected Software
Huawei AR120-S, AR1200, AR1200-S, AR150, AR160, AR200, AR200-S, AR2200, AR2200-S, AR3200, AR3600, AR510, CloudEngine 12800, CloudEngine 5800, CloudEngine 6800, CloudEngine 7800, DP300, SMC2.0, SRG1300, SRG2300, SRG3300, TE30, TE60, VP9660, ViewPoint 8660, eSpace IAD, eSpace U1981 and eSpace USM.
Detection Method
Detection Method
Checks if a vulnerable version is present on the target host.
Solution
Solution
See the referenced vendor advisory for a solution.