CVE-2018-7960

Summary

There is a SRTP icon display vulnerability in Huawei eSpace product. An unauthenticated, remote attacker launches man-in-the-middle attack to intercept the packets in non-secure transmission mode. Successful exploitation may intercept and tamper with the call information, eventually cause sensitive information leak.

Affected Software

VendorProductVersion RangeStatus
Huawei Technologies Co., Ltd.eSpace 7950V200R003C30affected

Weaknesses

  • information leakage

ADP Enrichment

CVE Program Container

Additional References

References