Incorrect Access Control Vulnerability in H3C ER8300G2-X Router
CVE-2024-32238

Currently unrated

Key Information:

Vendor: H3C
Status: ER8300G2-X
Vendor: CVE Published:; 22 April 2024

Summary

The H3C ER8300G2-X router is susceptible to an Incorrect Access Control vulnerability that exposes the password for the router's management system. This weakness occurs through the login interface of the management system page, which can potentially allow unauthorized users to gain access to sensitive configurations and data. It is crucial for users of this router to assess their security protocols and implement necessary measures to safeguard against potential exploitation.

References

https://www.h3c.com/cn/Products_And_Solution/InterConnect...

https://github.com/asdfjkl11/CVE-2024-32238/issues/1

Timeline

Vulnerability published
Apr 22, 2024
Vulnerability Reserved
Apr 12, 2024