8.5
CVE-2015-8227
- EPSS 0.16%
- Veröffentlicht 24.11.2015 20:59:17
- Zuletzt bearbeitet 12.04.2025 10:46:40
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginThe built-in web server in Huawei VP9660 multi-point control unit with software before V200R001C30SPC700 allows remote administrators to obtain sensitive information or cause a denial of service via a crafted message.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Huawei ≫ Vp 9660 Firmware Version <= v200r001c30
Huawei ≫ Vp 9660 Firmware Versionv200r001c01
Huawei ≫ Vp 9660 Firmware Versionv200r001c02
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.16% | 0.335 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 8.5 | 6.8 | 10 |
AV:N/AC:M/Au:S/C:C/I:C/A:C
|
CWE-20 Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.