CVE-2015-2800
Severity Score
7.5
*CVSS v3
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
The user authentication module in Huawei Campus switches S5700, S5300, S6300, and S6700 with software before V200R001SPH012 and S7700, S9300, and S9700 with software before V200R001SPH015 allows remote attackers to cause a denial of service (device restart) via vectors involving authentication, which trigger an array access violation.
El módulo de autentificación de usuarios en los switches Huawei Campus S5700, S5300, S6300 y S6700 con un software anterior a V200R001SPH012 y S7700, S9300 y S9700 con una versión de software anterior al V200R001SPH015 permite a atacantes remotos causar un ataque de denegación de servicio (reinicio del dispositivo) mediante vectores involucrados en la autentificación, el cual desencadena una violación de acceso al array.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2015-03-30 CVE Reserved
- 2017-06-08 CVE Published
- 2023-04-18 EPSS Updated
- 2024-08-06 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-287: Improper Authentication
CAPEC
References (2)
| URL | Tag | Source |
|---|---|---|
| http://www.securityfocus.com/bid/73355 | Third Party Advisory |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-418554.htm | 2017-06-20 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Huawei Search vendor "Huawei" | S5700 Firmware Search vendor "Huawei" for product "S5700 Firmware" | <= v200r001c00spc300 Search vendor "Huawei" for product "S5700 Firmware" and version " <= v200r001c00spc300" | - |
Affected
| in | Huawei Search vendor "Huawei" | Campus S5700 Search vendor "Huawei" for product "Campus S5700" | - | - |
Safe
|
| Huawei Search vendor "Huawei" | S5300 Firmware Search vendor "Huawei" for product "S5300 Firmware" | <= v200r001c00spc300 Search vendor "Huawei" for product "S5300 Firmware" and version " <= v200r001c00spc300" | - |
Affected
| in | Huawei Search vendor "Huawei" | Campus S5300 Search vendor "Huawei" for product "Campus S5300" | - | - |
Safe
|
| Huawei Search vendor "Huawei" | S6300 Firmware Search vendor "Huawei" for product "S6300 Firmware" | <= v200r001c00spc300 Search vendor "Huawei" for product "S6300 Firmware" and version " <= v200r001c00spc300" | - |
Affected
| in | Huawei Search vendor "Huawei" | Campus S6300 Search vendor "Huawei" for product "Campus S6300" | - | - |
Safe
|
| Huawei Search vendor "Huawei" | S6700 Firmware Search vendor "Huawei" for product "S6700 Firmware" | <= v200r001c00spc300 Search vendor "Huawei" for product "S6700 Firmware" and version " <= v200r001c00spc300" | - |
Affected
| in | Huawei Search vendor "Huawei" | Campus S6700 Search vendor "Huawei" for product "Campus S6700" | - | - |
Safe
|
| Huawei Search vendor "Huawei" | S7700 Firmware Search vendor "Huawei" for product "S7700 Firmware" | <= v200r001c00spc300 Search vendor "Huawei" for product "S7700 Firmware" and version " <= v200r001c00spc300" | - |
Affected
| in | Huawei Search vendor "Huawei" | Campus S7700 Search vendor "Huawei" for product "Campus S7700" | - | - |
Safe
|
| Huawei Search vendor "Huawei" | S9300 Firmware Search vendor "Huawei" for product "S9300 Firmware" | <= v200r001c00spc300 Search vendor "Huawei" for product "S9300 Firmware" and version " <= v200r001c00spc300" | - |
Affected
| in | Huawei Search vendor "Huawei" | Campus S9300 Search vendor "Huawei" for product "Campus S9300" | - | - |
Safe
|
| Huawei Search vendor "Huawei" | S9700 Firmware Search vendor "Huawei" for product "S9700 Firmware" | <= v200r001c00spc300 Search vendor "Huawei" for product "S9700 Firmware" and version " <= v200r001c00spc300" | - |
Affected
| in | Huawei Search vendor "Huawei" | Campus S9700 Search vendor "Huawei" for product "Campus S9700" | - | - |
Safe
|