Improper Authentication Vulnerability in FLMG-10 by Huawei
CVE-2022-22259

6.8MEDIUM

Key Information:

Vendor: Huawei
Status: Flmg-10
Vendor: CVE Published:; 13 June 2022

What is CVE-2022-22259?

An improper authentication vulnerability has been identified in Huawei's FLMG-10 product, specifically in version 10.0.1.0 (H100SP22C00). This flaw allows an attacker to gain unauthorized access and potentially take control of the affected device, which poses significant security risks. Organizations using this product are encouraged to assess their systems for any possible implications stemming from this vulnerability.

Affected Version(s)

FLMG-10 10.0.1.0(H100SP22C00)

References

https://www.huawei.com/en/psirt/security-advisories/huawe...

x_refsource_MISC

CVSS V3.1

Score:

6.8

Severity:

MEDIUM

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Physical

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 13, 2022
Vulnerability Reserved
Dec 22, 2021