ID HUAWEI-SA-20151029-01-UE
Type huawei
Reporter Huawei Technologies
Modified 2015-11-18T00:00:00
Description
Products
Switches
Routers
WLAN
Servers
See All
Solutions
Cloud Data Center
Enterprise Networking
Wireless Private Network
Solutions by Industry
See All
Services
Training and Certification
ICT Lifecycle Services
Technology Services
Industry Solution Services
See All
See all offerings at e.huawei.com
Need Support ?
Product Support
Software Download
Community
Tools
Go to Full Support
{"id": "HUAWEI-SA-20151029-01-UE", "bulletinFamily": "software", "title": "Security Advisory - UE Measurement Leak Vulnerability in Huawei P8 Phones", "description": "Products\n\nSwitches\nRouters\nWLAN\nServers\nSee All\n\n\n\nSolutions\n\nCloud Data Center\nEnterprise Networking\nWireless Private Network\nSolutions by Industry\nSee All\n\n\n\nServices\n\nTraining and Certification\nICT Lifecycle Services\nTechnology Services\nIndustry Solution Services\nSee All\n\n\n\nSee all offerings at e.huawei.com\n\n\n\nNeed Support ?\n\nProduct Support\nSoftware Download\nCommunity\nTools\n\nGo to Full Support", "published": "2015-10-29T00:00:00", "modified": "2015-11-18T00:00:00", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}, "href": "https://www.huawei.com/en/psirt/security-advisories/2015/hw-459832", "reporter": "Huawei Technologies", "references": [], "cvelist": ["CVE-2015-8224"], "type": "huawei", "lastseen": "2019-02-01T18:02:00", "edition": 1, "viewCount": 1, "enchantments": {"score": {"value": 5.2, "vector": "NONE", "modified": "2019-02-01T18:02:00", "rev": 2}, "dependencies": {"references": [{"type": "cve", "idList": ["CVE-2015-8224"]}], "modified": "2019-02-01T18:02:00", "rev": 2}, "vulnersScore": 5.2}, "affectedSoftware": [{"name": "P8", "operator": "eq", "version": "Versions earlier than GRA-UL00C00B210"}, {"name": "P8", "operator": "eq", "version": "Versions earlier than GRA-L09C432B200"}, {"name": "P8", "operator": "eq", "version": "Versions earlier than GRA-TL00C01B210"}, {"name": "P8", "operator": "eq", "version": "Versions earlier than GRA-CL00C92B210"}]}
{"cve": [{"lastseen": "2021-02-02T06:21:30", "description": "Huawei P8 before GRA-CL00C92B210, before GRA-L09C432B200, before GRA-TL00C01B210, and before GRA-UL00C00B210 allows remote attackers to obtain user equipment (aka UE) measurements of signal strengths.", "edition": 4, "cvss3": {"exploitabilityScore": 2.2, "cvssV3": {"baseSeverity": "LOW", "confidentialityImpact": "LOW", "attackComplexity": "HIGH", "scope": "UNCHANGED", "attackVector": "NETWORK", "availabilityImpact": "NONE", "integrityImpact": "NONE", "baseScore": 3.7, "privilegesRequired": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N", "userInteraction": "NONE", "version": "3.0"}, "impactScore": 1.4}, "published": "2017-09-20T16:29:00", "title": "CVE-2015-8224", "type": "cve", "cwe": ["CWE-200"], "bulletinFamily": "NVD", "cvss2": {"severity": "MEDIUM", "exploitabilityScore": 8.6, "obtainAllPrivilege": false, "userInteractionRequired": false, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "PARTIAL", "availabilityImpact": "NONE", "integrityImpact": "NONE", "baseScore": 4.3, "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 2.9, "obtainUserPrivilege": false}, "cvelist": ["CVE-2015-8224"], "modified": "2017-09-23T14:43:00", "cpe": ["cpe:/o:huawei:p8_firmware:-"], "id": "CVE-2015-8224", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-8224", "cvss": {"score": 4.3, "vector": "AV:N/AC:M/Au:N/C:P/I:N/A:N"}, "cpe23": ["cpe:2.3:o:huawei:p8_firmware:-:*:*:*:*:*:*:*"]}]}
