Lucene search

[email protected]CVE-2015-3912

HistoryMay 21, 2015 - 7:59 p.m.

CVE-2015-3912

2015-05-2119:59:00

CWE-200

[email protected]

web.nvd.nist.gov

huawei

e355s

mobile wifi

firmware

cve-2015-3912

vulnerability

sensitive information disclosure

network sniffing

remote attack

6.7 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.003 Low

EPSS

Percentile

69.2%

JSON

Huawei E355s Mobile WiFi with firmware before 22.158.45.02.625 and WEBUI before 13.100.04.01.625 allows remote attackers to obtain sensitive configuration information by sniffing the network or sending unspecified commands.

CPENameOperatorVersion
huawei:webuihuawei webuile11.011.04.00.625
huawei:e355s_mobile_wifi_firmwarehuawei e355s mobile wifi firmwarele22.158.01.00.625

CPE	Name	Operator	Version
huawei:webui	huawei webui	le	11.011.04.00.625
huawei:e355s_mobile_wifi_firmware	huawei e355s mobile wifi firmware	le	22.158.01.00.625

References

www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-425435.htm

www.securityfocus.com/bid/74397

6.7 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.003 Low

EPSS

Percentile

69.2%

JSON

Related for CVE-2015-3912

prion1 huawei1 cvelist1