Lucene search
Huawei TechnologiesHUAWEI-SA-20150121-01-QUIDWAY-SWITCHESHistoryJan 21, 2015 - 12:00 a.m.
Security Advisory-Authority Control Vulnerability in Quidway Switches
2015-01-2100:00:00
Huawei Technologies
www.huawei.com
11
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.003 Low
EPSS
Percentile
71.8%
Huawei Quidway switches have the authority control vulnerability in access authentication, which may be exploited by attackers to obtain higher access permissions. (Vulnerability ID: HWPSIRT-2014-11119)
This Vulnerability has been assigned Common Vulnerabilities and Exposures (CVE) ID: CVE-2015-1460.
Currently, official fixes are available.
Affected configurations
Node
huaweiquidway_s2350MatchV200R003C00SPC300
ORhuaweiquidway_s2750MatchV200R003C00SPC300
ORhuaweiquidway_s5300MatchV200R003C00SPC300
ORhuaweiquidway_s5700MatchV200R003C00SPC300
ORhuaweiquidway_s6300MatchV200R003C00SPC300
ORhuaweiquidway_s6700MatchV200R003C00SPC300
ORhuaweiquidway_s7700MatchV200R003C00SPC300
ORhuaweiquidway_s7700MatchV200R003C00SPC500
ORhuaweiquidway_s9300MatchV200R003C00SPC300
ORhuaweiquidway_s9300MatchV200R003C00SPC500
ORhuaweiquidway_s9700MatchV200R003C00SPC300
ORhuaweiquidway_s9700MatchV200R003C00SPC500
Related
openvas
openvas
cve
cve
CVE-2015-1460
2022-10-03 16:15:51
nvd
nvd
CVE-2015-1460
2015-02-03 16:59:32
cvelist
cvelist
CVE-2015-1460
2022-10-03 16:15:51
prion
prion
Code injection
2015-02-03 16:59:00
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.003 Low
EPSS
Percentile
71.8%
Related for HUAWEI-SA-20150121-01-QUIDWAY-SWITCHES