Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveHuaweiCVE-2014-3223
HistoryApr 02, 2017 - 8:59 p.m.

CVE-2014-3223

2017-04-0220:59:00
CWE-19
huawei
web.nvd.nist.gov
24
huawei
s9300
s2300
s3300
s5300
s6300
v100r006sph013
v100r006sph010
y.1731
vulnerability
packet processing
restart

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

AI Score

7.5

Confidence

High

EPSS

0.001

Percentile

46.2%

JSON

Huawei S9300 with software before V100R006SPH013 and S2300,S3300,S5300,S6300 with software before V100R006SPH010 support Y.1731 and therefore have the Y.1731 vulnerability in processing special packets. The vulnerability causes the restart of switches.

Affected configurations

Nvd
Vulners
Node
huaweis9300_firmwareMatchv100r006c00spc500
OR
huaweis9300_firmwareMatchv100r006c00spc800
AND
huaweis9300Match-
Node
huaweis3300_firmwareMatchv100r006c00spc800
OR
huaweis3300_firmwareMatchv100r006c01spc100
OR
huaweis3300_firmwareMatchv100r006c03
AND
huaweis3300Match-
Node
huaweis2300_firmwareMatchv100r006c00spc800
OR
huaweis2300_firmwareMatchv100r006c01spc100
OR
huaweis2300_firmwareMatchv100r006c03
AND
huaweis2300Match-
Node
huaweis5300_firmwareMatchv100r006c00spc800
OR
huaweis5300_firmwareMatchv100r006c01spc100
OR
huaweis5300_firmwareMatchv100r006c03
AND
huaweis5300Match-
Node
huaweis6300_firmwareMatchv100r006c00spc800
OR
huaweis6300_firmwareMatchv100r006c01spc100
OR
huaweis6300_firmwareMatchv100r006c03
AND
huaweis6300Match-
VendorProductVersionCPE
huaweis9300_firmwarev100r006c00spc500cpe:2.3:o:huawei:s9300_firmware:v100r006c00spc500:*:*:*:*:*:*:*
huaweis9300_firmwarev100r006c00spc800cpe:2.3:o:huawei:s9300_firmware:v100r006c00spc800:*:*:*:*:*:*:*
huaweis9300-cpe:2.3:h:huawei:s9300:-:*:*:*:*:*:*:*
huaweis3300_firmwarev100r006c00spc800cpe:2.3:o:huawei:s3300_firmware:v100r006c00spc800:*:*:*:*:*:*:*
huaweis3300_firmwarev100r006c01spc100cpe:2.3:o:huawei:s3300_firmware:v100r006c01spc100:*:*:*:*:*:*:*
huaweis3300_firmwarev100r006c03cpe:2.3:o:huawei:s3300_firmware:v100r006c03:*:*:*:*:*:*:*
huaweis3300-cpe:2.3:h:huawei:s3300:-:*:*:*:*:*:*:*
huaweis2300_firmwarev100r006c00spc800cpe:2.3:o:huawei:s2300_firmware:v100r006c00spc800:*:*:*:*:*:*:*
huaweis2300_firmwarev100r006c01spc100cpe:2.3:o:huawei:s2300_firmware:v100r006c01spc100:*:*:*:*:*:*:*
huaweis2300_firmwarev100r006c03cpe:2.3:o:huawei:s2300_firmware:v100r006c03:*:*:*:*:*:*:*
Rows per page:
1-10 of 191

CNA Affected

[
  {
    "product": "S9300,S2300,S3300,S5300,S6300 S9300 with software V100R006C00SPC500??S9300 with software V100R006C00SPC800,S2300,S3300,S5300,S6300 with software V100R006C00SPC800,V100R006C01SPC100, V100R006C03",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "S9300,S2300,S3300,S5300,S6300 S9300 with software V100R006C00SPC500??S9300 with software V100R006C00SPC800,S2300,S3300,S5300,S6300 with software V100R006C00SPC800,V100R006C01SPC100, V100R006C03"
      }
    ]
  }
]

Related

prion 1
nessus 1
cvelist 1
huawei 1
nvd 1
prion
prion
Code injection
2017-04-02 20:59:00
nessus
nessus
Huawei Switch DoS (HWPSIRT-2013-1165)
2014-08-22 00:00:00
cvelist
cvelist
CVE-2014-3223
2017-04-02 20:00:00
huawei
huawei
Security Advisory- Y.1731 Vulnerability on Some Huawei Switches
2014-03-17 00:00:00
nvd
nvd
CVE-2014-3223
2017-04-02 20:59:00

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

AI Score

7.5

Confidence

High

EPSS

0.001

Percentile

46.2%

JSON
Related for CVE-2014-3223
prion1nessus1cvelist1huawei1nvd1