Vulnerability Details : CVE-2023-6514
The Bluetooth module of some Huawei Smart Screen products has an identity authentication bypass vulnerability. Successful exploitation of this vulnerability may allow attackers to access restricted functions.
Successful exploitation of this vulnerability may allow attackers to access restricted functions.
Vulnerability category: BypassGain privilege
Products affected by CVE-2023-6514
- cpe:2.3:o:huawei:ajmd-370s_firmware:103.1.0.110\(sp12c00e2r1p2\):*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2023-6514
0.04%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 7 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2023-6514
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
8.8
|
HIGH | CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
2.8
|
5.9
|
NIST | |
|
8.8
|
HIGH | CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
2.8
|
5.9
|
Huawei Technologies |
CWE ids for CVE-2023-6514
-
When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.Assigned by: nvd@nist.gov (Primary)
-
Assigned by: psirt@huawei.com (Secondary)
References for CVE-2023-6514
-
https://www.huawei.com/en/psirt/security-advisories/2023/huawei-sa-ibvishssp-4bf951d4-en
Security Advisory - Identity Bypass Vulnerability in Some Huawei Smart Screen ProductsVendor Advisory
Jump to