7.8

CVE-2014-8572

Huawei AC6605 with software V200R001C00; AC6605 with software V200R002C00; ACU with software V200R001C00; ACU with software V200R002C00; S2300, S3300, S2700, S3700 with software V100R006C05 and earlier versions; S5300, S5700, S6300, S6700 with software V100R006, V200R001, V200R002, V200R003, V200R005C00SPC300 and earlier versions; S7700, S9300, S9300E, S9700 with software V100R006, V200R001, V200R002, V200R003, V200R005C00SPC300 and earlier versions could allow remote attackers to send a special SSH packet to the VRP device to cause a denial of service.

Daten sind bereitgestellt durch National Vulnerability Database (NVD)
HuaweiAc6605 Firmware Versionac6605_v200r001c00
   HuaweiAc6605 Version-
HuaweiAc6605 Firmware Versionac6605_v200r002c00
   HuaweiAc6605 Version-
HuaweiAcu Firmware Versionacu_v200r001c00
   HuaweiAcu Version-
HuaweiAcu Firmware Versionacu_v200r002c00
   HuaweiAcu Version-
HuaweiS Series Firmware Versionv100r006c05
   HuaweiS2300 Version-
   HuaweiS2700 Version-
   HuaweiS3300 Version-
   HuaweiS3700 Version-
HuaweiS5300 Firmware Version <= v200r005c00spc300
   HuaweiS5300 Version-
HuaweiS5300 Firmware Versionv100r006
   HuaweiS5300 Version-
HuaweiS5300 Firmware Versionv200r001
   HuaweiS5300 Version-
HuaweiS5300 Firmware Versionv200r002
   HuaweiS5300 Version-
HuaweiS5300 Firmware Versionv200r003
   HuaweiS5300 Version-
HuaweiS5700 Firmware Version <= v200r005c00spc300
   HuaweiS5700 Version-
HuaweiS5700 Firmware Versionv100r006
   HuaweiS5700 Version-
HuaweiS5700 Firmware Versionv200r001
   HuaweiS5700 Version-
HuaweiS5700 Firmware Versionv200r002
   HuaweiS5700 Version-
HuaweiS5700 Firmware Versionv200r003
   HuaweiS5700 Version-
HuaweiS6700 Firmware Version <= v200r005c00spc300
   HuaweiS6700 Version-
HuaweiS6700 Firmware Versionv100r006
   HuaweiS6700 Version-
HuaweiS6700 Firmware Versionv200r001
   HuaweiS6700 Version-
HuaweiS6700 Firmware Versionv200r002
   HuaweiS6700 Version-
HuaweiS6700 Firmware Versionv200r003
   HuaweiS6700 Version-
HuaweiS6300 Firmware Version <= v200r005c00spc300
   HuaweiS6300 Version-
HuaweiS6300 Firmware Versionv100r006
   HuaweiS6300 Version-
HuaweiS6300 Firmware Versionv200r001
   HuaweiS6300 Version-
HuaweiS6300 Firmware Versionv200r002
   HuaweiS6300 Version-
HuaweiS6300 Firmware Versionv200r003
   HuaweiS6300 Version-
HuaweiS7700 Firmware Version <= v200r005c00spc300
   HuaweiS7700 Version-
HuaweiS7700 Firmware Versionv100r006
   HuaweiS7700 Version-
HuaweiS7700 Firmware Versionv200r001
   HuaweiS7700 Version-
HuaweiS7700 Firmware Versionv200r002
   HuaweiS7700 Version-
HuaweiS7700 Firmware Versionv200r003
   HuaweiS7700 Version-
HuaweiS9700 Firmware Version <= v200r005c00spc300
   HuaweiS9700 Version-
HuaweiS9700 Firmware Versionv100r006
   HuaweiS9700 Version-
HuaweiS9700 Firmware Versionv200r001
   HuaweiS9700 Version-
HuaweiS9700 Firmware Versionv200r002
   HuaweiS9700 Version-
HuaweiS9700 Firmware Versionv200r003
   HuaweiS9700 Version-
HuaweiS9300 Firmware Version <= v200r005c00spc300
   HuaweiS9300 Version-
HuaweiS9300 Firmware Versionv100r006
   HuaweiS9300 Version-
HuaweiS9300 Firmware Versionv200r001
   HuaweiS9300 Version-
HuaweiS9300 Firmware Versionv200r002
   HuaweiS9300 Version-
HuaweiS9300 Firmware Versionv200r003
   HuaweiS9300 Version-
HuaweiS9300e Firmware Version <= v200r005c00spc300
   HuaweiS9300e Version-
HuaweiS9300e Firmware Versionv100r006
   HuaweiS9300e Version-
HuaweiS9300e Firmware Versionv200r001
   HuaweiS9300e Version-
HuaweiS9300e Firmware Versionv200r002
   HuaweiS9300e Version-
HuaweiS9300e Firmware Versionv200r003
   HuaweiS9300e Version-
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.28% 0.485
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.5 3.9 3.6
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
nvd@nist.gov 7.8 10 6.9
AV:N/AC:L/Au:N/C:N/I:N/A:C
CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.