CVE-2023-5142

Published: Sep 24, 2023Modified: Nov 21, 2024

5.3

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Exploitability: 3.9 / Impact: 1.4

Source: NVD

Description

A vulnerability classified as problematic was found in H3C GR-1100-P, GR-1108-P, GR-1200W, GR-1800AX, GR-2200, GR-3200, GR-5200, GR-8300, ER2100n, ER2200G2, ER3200G2, ER3260G2, ER5100G2, ER5200G2 and ER6300G2 up to 20230908. This vulnerability affects unknown code of the file /userLogin.asp of the component Config File Handler. The manipulation leads to path traversal. The attack can be initiated remotely. The complexity of an attack is rather high. The exploitation appears to be difficult. The exploit has been disclosed to the public and may be used. VDB-240238 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

Affected (15)

Products: H3c: Gr 1100 P Firmware, Gr 1108 P Firmware, Gr 1200w Firmware, Gr 1800ax Firmware, Gr 2200 Firmware, Gr 3200 Firmware, Gr 5200 Firmware, Gr 8300 Firmware, Er3260g2 Firmware, Er5200g2 Firmware, Er3200g2 Firmware, Er2100n Firmware, Er6300g2 Firmware, Er5100g2 Firmware, Er2200g2 Firmware

15 products

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
H3c Gr 1100 P Firmware	Up to 20230908

Running on/with	Platform Versions
H3c Gr 1100 P	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
H3c Gr 1108 P Firmware	Up to 20230908

Running on/with	Platform Versions
H3c Gr 1108 P	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
H3c Gr 1200w Firmware	Up to 20230908

Running on/with	Platform Versions
H3c Gr 1200w	All versions

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
H3c Gr 1800ax Firmware	Up to 20230908

Running on/with	Platform Versions
H3c Gr 1800ax	All versions

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
H3c Gr 2200 Firmware	Up to 20230908

Running on/with	Platform Versions
H3c Gr 2200	All versions

Configuration F

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
H3c Gr 3200 Firmware	Up to 20230908

Running on/with	Platform Versions
H3c Gr 3200	All versions

Configuration G

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
H3c Gr 5200 Firmware	Up to 20230908

Running on/with	Platform Versions
H3c Gr 5200	All versions

Configuration H

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
H3c Gr 8300 Firmware	Up to 20230908

Running on/with	Platform Versions
H3c Gr 8300	All versions

Configuration I

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
H3c Er3260g2 Firmware	Up to 20230908

Running on/with	Platform Versions
H3c Er3260g2	All versions

Configuration J

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
H3c Er5200g2 Firmware	Up to 20230908

Running on/with	Platform Versions
H3c Er5200g2	All versions

Configuration K

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
H3c Er3200g2 Firmware	Up to 20230908

Running on/with	Platform Versions
H3c Er3200g2	All versions

Configuration L

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
H3c Er2100n Firmware	Up to 20230908

Running on/with	Platform Versions
H3c Er2100n	All versions

Configuration M

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
H3c Er6300g2 Firmware	Up to 20230908

Running on/with	Platform Versions
H3c Er6300g2	All versions

Configuration N

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
H3c Er5100g2 Firmware	Up to 20230908

Running on/with	Platform Versions
H3c Er5100g2	All versions

Configuration O

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
H3c Er2200g2 Firmware	Up to 20230908

Running on/with	Platform Versions
H3c Er2200g2	All versions

Related CWEs

CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

References (8)

https://github.com/CJCniubi666/H3C-ER/blob/main/README.md

Source: cna@vuldb.com

ExploitThird Party Advisory

https://github.com/yinsel/CVE-H3C-Report

Source: cna@vuldb.com

ExploitThird Party Advisory

https://vuldb.com/?ctiid.240238

Source: cna@vuldb.com

Permissions RequiredThird Party Advisory

https://vuldb.com/?id.240238

Source: cna@vuldb.com

Third Party Advisory

https://github.com/CJCniubi666/H3C-ER/blob/main/README.md

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

https://github.com/yinsel/CVE-H3C-Report

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

https://vuldb.com/?ctiid.240238

Source: af854a3a-2127-422b-91ae-364da2661108

Permissions RequiredThird Party Advisory

https://vuldb.com/?id.240238

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

Timeline

No history available yet.