CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-7960

There is a SRTP icon display vulnerability in Huawei eSpace product. An unauthenticated, remote attacker launches man-in-the-middle attack to intercept the packets in non-secure transmission mode. Successful exploitation may intercept and tamper with the call information, eventually cause sensitive information leak.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 22.3%

CVSS Severity

CVSS v3 Score 7.4

CVSS v2 Score 5.8

References

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20181114-02-espace-en
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20181114-02-espace-en

Products affected by CVE-2018-7960

Huawei » Espace 7950 » Version: N/A

cpe:2.3:h:huawei:espace_7950:-
Huawei » Espace 7950 Firmware » Version: v200r003c30

cpe:2.3:o:huawei:espace_7950_firmware:v200r003c30

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-7960

Products

Pricing

Contact Us