CVE-2014-4707 Information

Description

Huawei Campus S7700 with software V200R001C00SPC300 V200R002C00SPC100 V200R003C00SPC300; S9300 with software V200R001C00SPC300 V200R002C00SPC100 V200R003C00SPC300; S9700 with software V200R001C00SPC300 V200R002C00SPC100 V200R003C00SPC300 allow unauthorized users to upgrade the bootrom or bootload software bypass a Menu protection mechanism conduct a Menu compromise attack or bypass a Menu/upgrade protection mechanism.

CVSS Vector

CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Reference

http://www.huawei.com/en/psirt/security-advisories/hw-334629

Attack Complexity

LOW

Privileges Required

NONE

User Interaction Required

NONE

Scope

NONE

Confidentiality Impact

UNCHANGED

Integrity Impact

HIGH

Availability Impact

HIGH

Base Score

HIGH

Base Severity

8.8