Lucene search

[email protected]CVE-2015-8676

HistoryApr 14, 2016 - 3:59 p.m.

CVE-2015-8676

2016-04-1415:59:00

CWE-119

CWE-399

[email protected]

web.nvd.nist.gov

huawei

campus series

switches

denial of service

memory leak

icmpv6

nvd

cve-2015-8676

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.3 High

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.003 Low

EPSS

Percentile

65.5%

JSON

Memory leak in Huawei S5300EI, S5300SI, S5310HI, S6300EI/ S2350EI, and S5300LI Campus series switches with software V200R001C00 before V200R001SPH018, V200R002C00 before V200R003SPH011, and V200R003C00 before V200R003SPH011; S9300, S7700, and S9700 Campus series switches with software V200R001C00 before V200R001SPH023, V200R002C00 before V200R003SPH011, and V200R003C00 before V200R003SPH011; and S2300 and S3300 Campus series switches with software V100R006C05 before V100R006SPH022 allows remote attackers to cause a denial of service (memory consumption and reboot) via a large number of ICMPv6 packets.

CPENameOperatorVersion
huawei:s2350ei_firmwarehuawei s2350ei firmwareltv200r001sph018
huawei:s2350ei_firmwarehuawei s2350ei firmwareltv200r003sph011
huawei:s5300ei_firmwarehuawei s5300ei firmwareltv200r001sph018
huawei:s5300ei_firmwarehuawei s5300ei firmwareltv200r003sph011
huawei:s5300si_firmwarehuawei s5300si firmwareltv200r001sph018
huawei:s5300si_firmwarehuawei s5300si firmwareltv200r003sph011
huawei:s5310hi_firmwarehuawei s5310hi firmwareltv200r001sph018
huawei:s5310hi_firmwarehuawei s5310hi firmwareltv200r003sph011
huawei:s6300ei_firmwarehuawei s6300ei firmwareltv200r001sph018
huawei:s6300ei_firmwarehuawei s6300ei firmwareltv200r003sph011

CPE	Name	Operator	Version
huawei:s2350ei_firmware	huawei s2350ei firmware	lt	v200r001sph018
huawei:s2350ei_firmware	huawei s2350ei firmware	lt	v200r003sph011
huawei:s5300ei_firmware	huawei s5300ei firmware	lt	v200r001sph018
huawei:s5300ei_firmware	huawei s5300ei firmware	lt	v200r003sph011
huawei:s5300si_firmware	huawei s5300si firmware	lt	v200r001sph018
huawei:s5300si_firmware	huawei s5300si firmware	lt	v200r003sph011
huawei:s5310hi_firmware	huawei s5310hi firmware	lt	v200r001sph018
huawei:s5310hi_firmware	huawei s5310hi firmware	lt	v200r003sph011
huawei:s6300ei_firmware	huawei s6300ei firmware	lt	v200r001sph018
huawei:s6300ei_firmware	huawei s6300ei firmware	lt	v200r003sph011

Rows per page:

1-10 of 201

References

www.huawei.com/en/psirt/security-advisories/huawei-sa-20160113-02-switch-en

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.3 High

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.003 Low

EPSS

Percentile

65.5%

JSON

Related for CVE-2015-8676

prion1 cvelist1 huawei1