Lucene search

K
cve[email protected]CVE-2015-8227
HistoryNov 24, 2015 - 8:59 p.m.

CVE-2015-8227

2015-11-2420:59:17
CWE-20
web.nvd.nist.gov
22
huawei
vp9660
multi-point control unit
web server
vulnerability
remote access
information disclosure
denial of service
cve-2015-8227

8.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:S/C:C/I:C/A:C

6.7 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

33.2%

The built-in web server in Huawei VP9660 multi-point control unit with software before V200R001C30SPC700 allows remote administrators to obtain sensitive information or cause a denial of service via a crafted message.

Affected configurations

NVD
Node
huaweivp_9660_firmwareRangev200r001c30
OR
huaweivp_9660_firmwareMatchv200r001c01
OR
huaweivp_9660_firmwareMatchv200r001c02
AND
huaweivp9660Match-

8.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:S/C:C/I:C/A:C

6.7 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

33.2%

Related for CVE-2015-8227