CVE-2015-8676

EPSS 0.28%
Veröffentlicht 14.04.2016 15:59:02
Zuletzt bearbeitet 12.04.2025 10:46:40
Quelle cve@mitre.org
Teams Watchlist Login
Unerledigt Login

Memory leak in Huawei S5300EI, S5300SI, S5310HI, S6300EI/ S2350EI, and S5300LI Campus series switches with software V200R001C00 before V200R001SPH018, V200R002C00 before V200R003SPH011, and V200R003C00 before V200R003SPH011; S9300, S7700, and S9700 Campus series switches with software V200R001C00 before V200R001SPH023, V200R002C00 before V200R003SPH011, and V200R003C00 before V200R003SPH011; and S2300 and S3300 Campus series switches with software V100R006C05 before V100R006SPH022 allows remote attackers to cause a denial of service (memory consumption and reboot) via a large number of ICMPv6 packets.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 4

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Huawei ≫ S2350ei Firmware Version >= v200r001c00 < v200r001sph018

Huawei ≫ S2350ei Version-

Huawei ≫ S2350ei Firmware Version >= v200r002c00 < v200r003sph011

Huawei ≫ S2350ei Version-

Huawei ≫ S5300ei Firmware Version >= v200r001c00 < v200r001sph018

Huawei ≫ S5300ei Version-

Huawei ≫ S5300ei Firmware Version >= v200r002c00 < v200r003sph011

Huawei ≫ S5300ei Version-

Huawei ≫ S5300si Firmware Version >= v200r001c00 < v200r001sph018

Huawei ≫ S5300si Version-

Huawei ≫ S5300si Firmware Version >= v200r002c00 < v200r003sph011

Huawei ≫ S5300si Version-

Huawei ≫ S5310hi Firmware Version >= v200r001c00 < v200r001sph018

Huawei ≫ S5310hi Version-

Huawei ≫ S5310hi Firmware Version >= v200r002c00 < v200r003sph011

Huawei ≫ S5310hi Version-

Huawei ≫ S6300ei Firmware Version >= v200r001c00 < v200r001sph018

Huawei ≫ S6300ei Version-

Huawei ≫ S6300ei Firmware Version >= v200r002c00 < v200r003sph011

Huawei ≫ S6300ei Version-

Huawei ≫ S5300li Firmware Version >= v200r001c00 < v200r001sph018

Huawei ≫ S5300li Version-

Huawei ≫ S5300li Firmware Version >= v200r002c00 < v200r003sph011

Huawei ≫ S5300li Version-

Huawei ≫ S9300 Firmware Version >= v200r001c00 < v200r001sph023

Huawei ≫ S9300 Version-

Huawei ≫ S9300 Firmware Version >= v200r002c00 < v200r003c00

Huawei ≫ S9300 Version-

Huawei ≫ S9300 Firmware Versionv200r003c00

Huawei ≫ S9300 Version-

Huawei ≫ S7700 Firmware Version >= v200r001c00 < v200r001sph023

Huawei ≫ S7700 Version-

Huawei ≫ S7700 Firmware Version >= v200r002c00 < v200r003c00

Huawei ≫ S7700 Version-

Huawei ≫ S7700 Firmware Versionv200r003c00

Huawei ≫ S7700 Version-

Huawei ≫ S9700 Firmware Version >= v200r001c00 < v200r001sph023

Huawei ≫ S9700 Version-

Huawei ≫ S9700 Firmware Version >= v200r002c00 < v200r003c00

Huawei ≫ S9700 Version-

Huawei ≫ S9700 Firmware Versionv200r003c00

Huawei ≫ S9700 Version-

Huawei ≫ S2300 Firmware Version >= v100r006c05 < v100r006sph022

Huawei ≫ S2300 Version-

Huawei ≫ S3300 Firmware Version >= v100r006c05 < v100r006sph022

Huawei ≫ S3300 Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.28%	0.511

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.5	3.9	3.6	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
nvd@nist.gov	7.8	10	6.9	AV:N/AC:L/Au:N/C:N/I:N/A:C

CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160113-02-switch-en

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2015-8676

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2015-8676

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2015-8676

EUVD