CVE-2018-7949

The iBMC (Intelligent Baseboard Management Controller) of some Huawei servers have a privilege escalation vulnerability. A remote attacker may send some specially crafted login messages to the affected products. Due to improper authentication design, successful exploit enables low privileged users to get or modify passwords of highly privileged users.

CVSS v3.0 8.8 HIGH
CVSS v2.0 4.0 MEDIUM

8.8^/10

CVSS v3.0 : HIGH

V3 Legend

Vector : AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability : 2.8 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

4.0^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:L/Au:S/C:P/I:N/A:N

Exploitability : 8.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication SINGLE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References

Link	Resource
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180530-03-server-en	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:huawei:1288h_v5_firmware:100r005c00:*:*:*:*:*:*:*

cpe:2.3:h:huawei:1288h_v5:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND

cpe:2.3:o:huawei:2288h_v5_firmware:100r005c00:*:*:*:*:*:*:*

cpe:2.3:h:huawei:2288h_v5:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND

cpe:2.3:o:huawei:2488_v5_firmware:100r005c00:*:*:*:*:*:*:*

cpe:2.3:h:huawei:2488_v5:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND

cpe:2.3:o:huawei:ch121_v3_firmware:100r001c00:*:*:*:*:*:*:*

cpe:2.3:h:huawei:ch121_v3:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND

cpe:2.3:o:huawei:ch121l_v3_firmware:100r001c00:*:*:*:*:*:*:*

cpe:2.3:h:huawei:ch121l_v3:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND

cpe:2.3:o:huawei:ch121l_v5_firmware:100r001c00:*:*:*:*:*:*:*

cpe:2.3:h:huawei:ch121l_v5:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND

cpe:2.3:o:huawei:ch121_v5_firmware:100r001c00:*:*:*:*:*:*:*

cpe:2.3:h:huawei:ch121_v5:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND

cpe:2.3:o:huawei:ch140_v3_firmware:100r001c00:*:*:*:*:*:*:*

cpe:2.3:h:huawei:ch140_v3:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND

cpe:2.3:o:huawei:ch140l_v3_firmware:100r001c00:*:*:*:*:*:*:*

cpe:2.3:h:huawei:ch140l_v3:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND

cpe:2.3:o:huawei:ch220_v3_firmware:100r001c00:*:*:*:*:*:*:*

cpe:2.3:h:huawei:ch220_v3:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND

cpe:2.3:o:huawei:ch222_v3_firmware:100r001c00:*:*:*:*:*:*:*

cpe:2.3:h:huawei:ch222_v3:-:*:*:*:*:*:*:*

Configuration 12 (hide)

AND

cpe:2.3:o:huawei:ch242_v3_firmware:100r001c00:*:*:*:*:*:*:*

cpe:2.3:h:huawei:ch242_v3:-:*:*:*:*:*:*:*

Configuration 13 (hide)

AND

cpe:2.3:o:huawei:ch242_v5_firmware:100r001c00:*:*:*:*:*:*:*

cpe:2.3:h:huawei:ch242_v5:-:*:*:*:*:*:*:*

Configuration 14 (hide)

AND

cpe:2.3:o:huawei:rh1288_v3_firmware:100r003c00:*:*:*:*:*:*:*

cpe:2.3:h:huawei:rh1288_v3:-:*:*:*:*:*:*:*

Configuration 15 (hide)

AND

cpe:2.3:o:huawei:rh2288_v3_firmware:100r003c00:*:*:*:*:*:*:*

cpe:2.3:h:huawei:rh2288_v3:-:*:*:*:*:*:*:*

Configuration 16 (hide)

AND

cpe:2.3:o:huawei:xh310_v3_firmware:100r003c00:*:*:*:*:*:*:*

cpe:2.3:h:huawei:xh310_v3:-:*:*:*:*:*:*:*

Configuration 17 (hide)

AND

cpe:2.3:o:huawei:xh321_v3_firmware:100r003c00:*:*:*:*:*:*:*

cpe:2.3:h:huawei:xh321_v3:-:*:*:*:*:*:*:*

Configuration 18 (hide)

AND

cpe:2.3:o:huawei:xh321_v5_firmware:100r005c00:*:*:*:*:*:*:*

cpe:2.3:h:huawei:xh321_v5:-:*:*:*:*:*:*:*

Configuration 19 (hide)

AND

cpe:2.3:o:huawei:rh2288h_v3_firmware:100r003c00:*:*:*:*:*:*:*

cpe:2.3:h:huawei:rh2288h_v3:-:*:*:*:*:*:*:*

Configuration 20 (hide)

AND

cpe:2.3:o:huawei:xh620_v3_firmware:100r003c00:*:*:*:*:*:*:*

cpe:2.3:h:huawei:xh620_v3:-:*:*:*:*:*:*:*

Information

Published : 2018-06-01 07:29

Updated : 2018-07-05 06:48

NVD link : CVE-2018-7949

Mitre link : CVE-2018-7949

JSON object : View

CWE

CWE-287

Improper Authentication

Products Affected

huawei

ch121_v3_firmware
rh2288h_v3
1288h_v5_firmware
ch140_v3
1288h_v5
2488_v5_firmware
ch222_v3
xh321_v5_firmware
ch242_v3
ch121_v5
xh321_v3_firmware
ch242_v3_firmware
xh321_v5
xh321_v3
ch242_v5
2288h_v5_firmware
ch140l_v3
ch140l_v3_firmware
xh620_v3_firmware
rh1288_v3_firmware
ch121l_v3_firmware
rh2288h_v3_firmware
ch121l_v3
xh310_v3
ch220_v3
ch121l_v5
ch121_v3
ch140_v3_firmware
ch121_v5_firmware
rh2288_v3_firmware
2288h_v5
ch242_v5_firmware
2488_v5
rh2288_v3
ch121l_v5_firmware
ch222_v3_firmware
xh620_v3
xh310_v3_firmware
rh1288_v3
ch220_v3_firmware

8.8 /10