CVE-2015-2800

{"id": "CVE-2015-2800", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.8, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 6.9, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV30": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.0", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 3.9}]}, "published": "2017-06-08T16:29:00.403", "references": [{"url": "http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-418554.htm", "tags": ["Third Party Advisory", "Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/73355", "tags": ["Third Party Advisory", "VDB Entry"], "source": "cve@mitre.org"}, {"url": "http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-418554.htm", "tags": ["Third Party Advisory", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/73355", "tags": ["Third Party Advisory", "VDB Entry"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-287"}]}], "descriptions": [{"lang": "en", "value": "The user authentication module in Huawei Campus switches S5700, S5300, S6300, and S6700 with software before V200R001SPH012 and S7700, S9300, and S9700 with software before V200R001SPH015 allows remote attackers to cause a denial of service (device restart) via vectors involving authentication, which trigger an array access violation."}, {"lang": "es", "value": "El m\u00f3dulo de autentificaci\u00f3n de usuarios en los switches Huawei Campus S5700, S5300, S6300 y S6700 con un software anterior a V200R001SPH012 y S7700, S9300 y S9700 con una versi\u00f3n de software anterior al V200R001SPH015 permite a atacantes remotos causar un ataque de denegaci\u00f3n de servicio (reinicio del dispositivo) mediante vectores involucrados en la autentificaci\u00f3n, el cual desencadena una violaci\u00f3n de acceso al array."}], "lastModified": "2024-11-21T02:28:06.093", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:huawei:s5700_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "98DB6875-7463-4D59-8DC4-86B678D97F95", "versionEndIncluding": "v200r001c00spc300"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:huawei:campus_s5700:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "4F29515E-98DD-496F-B3FC-176CD4B2BD9E"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:huawei:s5300_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "46D43A99-D0A5-439D-A25A-0785527018B0", "versionEndIncluding": "v200r001c00spc300"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:huawei:campus_s5300:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "DB230D94-2048-4AE9-873F-D4FA11B8F502"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:huawei:s6300_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "600EF41E-5FA7-4495-93CF-D8A467271256", "versionEndIncluding": "v200r001c00spc300"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:huawei:campus_s6300:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "AEB73CEC-BB35-40CD-BE87-DADD54ACB239"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:huawei:s6700_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2CD9F1EB-A8DB-405A-B721-BCB15AEF95CB", "versionEndIncluding": "v200r001c00spc300"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:huawei:campus_s6700:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "89288D18-DA31-4683-B6D0-E3CBC91AA7F3"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:huawei:s7700_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4EF3EC0C-6455-43A9-AE8E-0DD6A76D4502", "versionEndIncluding": "v200r001c00spc300"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:huawei:campus_s7700:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "C949558A-3AAC-4A2A-81C1-B9D7072FF3FF"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:huawei:s9300_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AA6351C4-E87D-4E4F-9E0C-F953F29986D8", "versionEndIncluding": "v200r001c00spc300"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:huawei:campus_s9300:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "4CDCCC3D-56A1-4C43-A341-CADCD0D2E2B3"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:huawei:s9700_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8F7C986D-E3CC-4B15-BBAB-834F9A85D24F", "versionEndIncluding": "v200r001c00spc300"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:huawei:campus_s9700:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "8F3527D2-0D93-43CE-9202-9CCFD91A4F9F"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "cve@mitre.org"}