Huawei Video Conference System prior V100R002C02B020SP01 Session credentials management

| CVSS Meta Temp Score | Current Exploit Price (≈) | CTI Interest Score |
|---|---|---|
| 7.9 | $0-$5k | 0.00 |
Summary
A vulnerability was found in Huawei Video Conference System. It has been classified as critical. This affects an unknown part of the component Session Handler. Performing a manipulation results in credentials management. This vulnerability is cataloged as CVE-2013-4629. Furthermore, there is an exploit available. Upgrading the affected component is recommended.
Details
A vulnerability, which was classified as critical, was found in Huawei Video Conference System. This affects an unknown code block of the component Session Handler. The manipulation with an unknown input leads to a credentials management vulnerability. CWE is classifying the issue as CWE-255. This is going to have an impact on confidentiality, integrity, and availability. The summary by CVE is:
The Huawei viewpoint VP9610 and VP9620 units for the Huawei Video Conference system do not update the Session ID upon successful establishment of a login session, which allows remote authenticated users to hijack sessions via an unspecified interception method.
The weakness was shared 05/12/2013 as Huawei-SA-20130513-01-VP as not defined advisory (Website). The advisory is shared at huawei.com. The vendor cooperated in the coordination of the public release. This vulnerability is uniquely identified as CVE-2013-4629 since 06/20/2013. It is possible to initiate the attack remotely. The requirement for exploitation is a authentication. Technical details are unknown but a public exploit is available. MITRE ATT&CK project uses the attack technique T1552 for this issue.
After immediately, there has been an exploit disclosed. It is declared as proof-of-concept. We expect the 0-day to have been worth approximately $5k-$25k. The vulnerability scanner Nessus provides a plugin with the ID 77335 (Huawei VP9610 / 9620 Fixed Session ID (HWNSIRT-2013-0318)), which helps to determine the existence of the flaw in a target environment. It is assigned to the family Huawei Local Security Checks.
Upgrading to version V100R002C02B020SP01 eliminates this vulnerability. A possible mitigation has been published 1 days after the disclosure of the vulnerability.
The vulnerability is also documented in the databases at X-Force (85164), Tenable (77335), SecurityFocus (BID 60709†), OSVDB (93466†) and Vulnerability Center (SBV-46010†). Several companies clearly confirm that VulDB is the primary source for best vulnerability data.
Affected
- VP9610 - V100R002C02B019SP05
- VP9620 - n/a
Product
Vendor
Name
License
Website
- Vendor: https://www.huawei.com/
CPE 2.3
CPE 2.2
CVSSv4
VulDB Vector: 🔍VulDB Reliability: 🔍
CVSSv3
VulDB Meta Base Score: 8.8VulDB Meta Temp Score: 7.9
VulDB Base Score: 8.8
VulDB Temp Score: 7.9
VulDB Vector: 🔍
VulDB Reliability: 🔍
CVSSv2
| AV | AC | Au | C | I | A |
|---|---|---|---|---|---|
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
|---|---|---|---|---|---|
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
VulDB Base Score: 🔍
VulDB Temp Score: 🔍
VulDB Reliability: 🔍
NVD Base Score: 🔍
Exploiting
Class: Credentials managementCWE: CWE-255
CAPEC: 🔍
ATT&CK: 🔍
Physical: No
Local: No
Remote: Yes
Availability: 🔍
Access: Public
Status: Proof-of-Concept
Download: 🔍
EPSS Score: 🔍
EPSS Percentile: 🔍
Price Prediction: 🔍
Current Price Estimation: 🔍
| 0-Day | Unlock | Unlock | Unlock | Unlock |
|---|---|---|---|---|
| Today | Unlock | Unlock | Unlock | Unlock |
Nessus ID: 77335
Nessus Name: Huawei VP9610 / 9620 Fixed Session ID (HWNSIRT-2013-0318)
Nessus File: 🔍
Nessus Risk: 🔍
Nessus Family: 🔍
Exploit-DB: 🔍
Threat Intelligence
Interest: 🔍Active Actors: 🔍
Active APT Groups: 🔍
Countermeasures
Recommended: UpgradeStatus: 🔍
Reaction Time: 🔍
0-Day Time: 🔍
Exposure Time: 🔍
Exploit Delay Time: 🔍
Upgrade: Video Conference System V100R002C02B020SP01
Timeline
05/12/2013 🔍05/12/2013 🔍
05/13/2013 🔍
05/13/2013 🔍
05/21/2013 🔍
06/20/2013 🔍
06/20/2013 🔍
08/22/2014 🔍
09/08/2014 🔍
05/11/2021 🔍
Sources
Vendor: huawei.comAdvisory: Huawei-SA-20130513-01-VP
Status: Not defined
Confirmation: 🔍
Coordinated: 🔍
CVE: CVE-2013-4629 (🔍)
GCVE (CVE): GCVE-0-2013-4629
GCVE (VulDB): GCVE-100-8769
X-Force: 85164
SecurityFocus: 60709
OSVDB: 93466
Vulnerability Center: 46010 - Huawei Viewpoint (VP) for Video Conference system Remote Security Bypass via Unspecified Interception Method, High
scip Labs: https://www.scip.ch/en/?labs.20161013
Entry
Created: 05/21/2013 12:05Updated: 05/11/2021 16:08
Changes: 05/21/2013 12:05 (72), 06/05/2017 10:55 (1), 05/11/2021 16:08 (4)
Complete: 🔍
Committer:
Cache ID: 216::103
Several companies clearly confirm that VulDB is the primary source for best vulnerability data.
No comments yet. Languages: en.
Please log in to comment.