Lucene search

[email protected]NVD:CVE-2014-9697

HistoryOct 17, 2017 - 2:29 p.m.

CVE-2014-9697

2017-10-1714:29:00

CWE-400

[email protected]

web.nvd.nist.gov

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.002

Percentile

62.0%

JSON

Huawei USG9560/9520/9580 before V300R001C01SPC300 allows remote attackers to cause a memory leak or denial of service (memory exhaustion, reboot and MPU switchover) via a crafted website.

Affected configurations

Nvd

Node

huaweiusg9560_firmwareMatchv300r001c00

huaweiusg9560_firmwareMatchv300r001c01spc100

AND

huaweiusg9560Match-

Node

huaweiusg9520_firmwareMatchv300r001c00

huaweiusg9520_firmwareMatchv300r001c01spc100

AND

huaweiusg9520Match-

Node

huaweiusg9580_firmwareMatchv300r001c00

huaweiusg9580_firmwareMatchv300r001c01spc100

AND

huaweiusg9580Match-

VendorProductVersionCPE
huaweiusg9560_firmwarev300r001c00cpe:2.3:o:huawei:usg9560_firmware:v300r001c00:*:*:*:*:*:*:*
huaweiusg9560_firmwarev300r001c01spc100cpe:2.3:o:huawei:usg9560_firmware:v300r001c01spc100:*:*:*:*:*:*:*
huaweiusg9560-cpe:2.3:h:huawei:usg9560:-:*:*:*:*:*:*:*
huaweiusg9520_firmwarev300r001c00cpe:2.3:o:huawei:usg9520_firmware:v300r001c00:*:*:*:*:*:*:*
huaweiusg9520_firmwarev300r001c01spc100cpe:2.3:o:huawei:usg9520_firmware:v300r001c01spc100:*:*:*:*:*:*:*
huaweiusg9520-cpe:2.3:h:huawei:usg9520:-:*:*:*:*:*:*:*
huaweiusg9580_firmwarev300r001c00cpe:2.3:o:huawei:usg9580_firmware:v300r001c00:*:*:*:*:*:*:*
huaweiusg9580_firmwarev300r001c01spc100cpe:2.3:o:huawei:usg9580_firmware:v300r001c01spc100:*:*:*:*:*:*:*
huaweiusg9580-cpe:2.3:h:huawei:usg9580:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
huawei	usg9560_firmware	v300r001c00	cpe:2.3:o:huawei:usg9560_firmware:v300r001c00:::::::*
huawei	usg9560_firmware	v300r001c01spc100	cpe:2.3:o:huawei:usg9560_firmware:v300r001c01spc100:::::::*
huawei	usg9560	-	cpe:2.3:h:huawei:usg9560:-:::::::*
huawei	usg9520_firmware	v300r001c00	cpe:2.3:o:huawei:usg9520_firmware:v300r001c00:::::::*
huawei	usg9520_firmware	v300r001c01spc100	cpe:2.3:o:huawei:usg9520_firmware:v300r001c01spc100:::::::*
huawei	usg9520	-	cpe:2.3:h:huawei:usg9520:-:::::::*
huawei	usg9580_firmware	v300r001c00	cpe:2.3:o:huawei:usg9580_firmware:v300r001c00:::::::*
huawei	usg9580_firmware	v300r001c01spc100	cpe:2.3:o:huawei:usg9580_firmware:v300r001c01spc100:::::::*
huawei	usg9580	-	cpe:2.3:h:huawei:usg9580:-:::::::*

References

www1.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-408141.htm

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.002

Percentile

62.0%

JSON

Related for NVD:CVE-2014-9697

cvelist1 cve1 prion1 huawei1