Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2014-3223
HistoryApr 02, 2017 - 8:59 p.m.

CVE-2014-3223

2017-04-0220:59:00
CWE-19
[email protected]
web.nvd.nist.gov
19
huawei
s9300
s2300
s3300
s5300
s6300
v100r006sph013
v100r006sph010
y.1731
vulnerability
packet processing
restart

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.5 High

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.001 Low

EPSS

Percentile

46.2%

JSON

Huawei S9300 with software before V100R006SPH013 and S2300,S3300,S5300,S6300 with software before V100R006SPH010 support Y.1731 and therefore have the Y.1731 vulnerability in processing special packets. The vulnerability causes the restart of switches.

Affected configurations

NVD
Node
huaweis9300_firmwareMatchv100r006c00spc500
OR
huaweis9300_firmwareMatchv100r006c00spc800
AND
huaweis9300Match-
Node
huaweis3300_firmwareMatchv100r006c00spc800
OR
huaweis3300_firmwareMatchv100r006c01spc100
OR
huaweis3300_firmwareMatchv100r006c03
AND
huaweis3300Match-
Node
huaweis2300_firmwareMatchv100r006c00spc800
OR
huaweis2300_firmwareMatchv100r006c01spc100
OR
huaweis2300_firmwareMatchv100r006c03
AND
huaweis2300Match-
Node
huaweis5300_firmwareMatchv100r006c00spc800
OR
huaweis5300_firmwareMatchv100r006c01spc100
OR
huaweis5300_firmwareMatchv100r006c03
AND
huaweis5300Match-
Node
huaweis6300_firmwareMatchv100r006c00spc800
OR
huaweis6300_firmwareMatchv100r006c01spc100
OR
huaweis6300_firmwareMatchv100r006c03
AND
huaweis6300Match-

CNA Affected

[
  {
    "product": "S9300,S2300,S3300,S5300,S6300 S9300 with software V100R006C00SPC500??S9300 with software V100R006C00SPC800,S2300,S3300,S5300,S6300 with software V100R006C00SPC800,V100R006C01SPC100, V100R006C03",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "S9300,S2300,S3300,S5300,S6300 S9300 with software V100R006C00SPC500??S9300 with software V100R006C00SPC800,S2300,S3300,S5300,S6300 with software V100R006C00SPC800,V100R006C01SPC100, V100R006C03"
      }
    ]
  }
]

Related

prion 1
cvelist 1
nessus 1
huawei 1
nvd 1
prion
prion
Code injection
2017-04-02 20:59:00
cvelist
cvelist
CVE-2014-3223
2017-04-02 20:00:00
nessus
nessus
Huawei Switch DoS (HWPSIRT-2013-1165)
2014-08-22 00:00:00
huawei
huawei
Security Advisory- Y.1731 Vulnerability on Some Huawei Switches
2014-03-17 00:00:00
nvd
nvd
CVE-2014-3223
2017-04-02 20:59:00

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.5 High

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.001 Low

EPSS

Percentile

46.2%

JSON
Related for CVE-2014-3223
prion1cvelist1nessus1huawei1nvd1