CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-7959

There is a short key vulnerability in Huawei eSpace product. An unauthenticated, remote attacker launches man-in-the-middle attack to intercept and decrypt the call information when the user enables SRTP to make a call. Successful exploitation may cause sensitive information leak.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 22.9%

CVSS Severity

CVSS v3 Score 5.9

CVSS v2 Score 4.3

References

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20181114-02-espace-en
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20181114-02-espace-en

Products affected by CVE-2018-7959

Huawei » Espace 7950 » Version: N/A

cpe:2.3:h:huawei:espace_7950:-
Huawei » Espace 7950 Firmware » Version: v200r003c30

cpe:2.3:o:huawei:espace_7950_firmware:v200r003c30

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-7959

Products

Pricing

Contact Us