CVE-2022-50800

HIGH

H3C SSL VPN 1.1 - User Enumeration via Login Script Credential Verification

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2022-50800. PoCs published by LiquidWorm.

AI-analyzed exploit summary This is a writeup describing a username enumeration vulnerability in H3C SSL VPN. The vulnerability allows an attacker to enumerate valid usernames by observing different error messages returned by the login script.

Description

H3C SSL VPN contains a user enumeration vulnerability that allows attackers to identify valid usernames through the 'txtUsrName' POST parameter. Attackers can submit different usernames to the login_submit.cgi endpoint and analyze response messages to distinguish between existing and non-existing accounts.

Exploits (1)

exploitdb WRITEUP
by LiquidWorm · textremotehardware
https://www.exploit-db.com/exploits/50742

This is a writeup describing a username enumeration vulnerability in H3C SSL VPN. The vulnerability allows an attacker to enumerate valid usernames by observing different error messages returned by the login script.

Classification
Writeup 90%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: H3C SSL VPN (version not specified)
No auth needed
Prerequisites: Network access to the H3C SSL VPN login page
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Exploit, Third Party Advisory exploit
https://www.exploit-db.com/exploits/50742
Various Sources product
https://www.h3c.com
Third Party Advisory third-party-advisory
https://www.zeroscience.mk/en/vulnerabilities/ZSL-2022-5697.php

Scores

CVSS v3 7.5
EPSS 0.0032
EPSS Percentile 23.0%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment
Exploitation poc
Automatable yes
Technical Impact partial

Details

CWE
CWE-203
Status published
Products (1)
Hangzhou H3C Technologies/H3C SSL VPN 1.1
Published Dec 30, 2025
Tracked Since Feb 18, 2026