Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2012-6571

The HTTP module in the (1) Branch Intelligent Management System (BIMS) and (2) web management components on Huawei AR routers and S2000, S3000, S3500, S3900, S5100, S5600, and S7800 switches uses predictable Session ID values, which makes it easier for remote attackers to hijack sessions via a brute-force attack.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 42.2%
CVSS Severity
CVSS v2 Score 7.5
Products affected by CVE-2012-6571
  • Huawei » Ar 18-1x » Version: r0130
    cpe:2.3:h:huawei:ar_18-1x:r0130
  • Huawei » Ar 18-2x » Version: r1712
    cpe:2.3:h:huawei:ar_18-2x:r1712
  • Huawei » Ar 18-3x » Version: r0118
    cpe:2.3:h:huawei:ar_18-3x:r0118
  • Huawei » Ar 19/29/49 » Version: r2207
    cpe:2.3:h:huawei:ar_19/29/49:r2207
  • Huawei » Ar 28/46 » Version: r0311
    cpe:2.3:h:huawei:ar_28/46:r0311
  • Huawei » S2000 » Version: r6305
    cpe:2.3:h:huawei:s2000:r6305
  • Huawei » S2300 » Version: r6305
    cpe:2.3:h:huawei:s2300:r6305
  • Huawei » S2700 » Version: r6305
    cpe:2.3:h:huawei:s2700:r6305
  • Huawei » S3000 » Version: r6305
    cpe:2.3:h:huawei:s3000:r6305
  • Huawei » S3300 » Version: r6305
    cpe:2.3:h:huawei:s3300:r6305
  • Huawei » S3300hi » Version: r6305
    cpe:2.3:h:huawei:s3300hi:r6305
  • Huawei » S3500 » Version: r6305
    cpe:2.3:h:huawei:s3500:r6305
  • Huawei » S3700 » Version: r6305
    cpe:2.3:h:huawei:s3700:r6305
  • Huawei » S3900 » Version: r6305
    cpe:2.3:h:huawei:s3900:r6305
  • Huawei » S5100 » Version: r6305
    cpe:2.3:h:huawei:s5100:r6305
  • Huawei » S5600 » Version: r6305
    cpe:2.3:h:huawei:s5600:r6305
  • Huawei » S7800 » Version: r6305
    cpe:2.3:h:huawei:s7800:r6305
  • Huawei » S8500 » Version: r1631
    cpe:2.3:h:huawei:s8500:r1631
  • Huawei » S8500 » Version: r1632
    cpe:2.3:h:huawei:s8500:r1632


Products
Pricing
Contact Us

Shodan ® - All rights reserved