Vulnerability CVE-2014-8570


Published: 2017-04-02

Description:
Huawei S9300, S9303, S9306, S9312 with software V100R002; S7700, S7703, S7706, S7712 with software V100R003, V100R006, V200R001, V200R002, V200R003, V200R005; S9300E, S9303E, S9306E, S9312E with software V200R001; S9700, S9703, S9706, S9712 with software V200R002, V200R003, V200R005; S12708, S12712 with software V200R005; 5700HI, 5300HI with software V100R006, V200R001, V200R002, V200R003, V200R005; 5710EI, 5310EI with software V200R002, V200R003, V200R005; 5710HI, 5310HI with software V200R003, V200R005; 6700EI, 6300EI with software V200R005 could cause a leak of IP addresses of devices, related to unintended interface support for VRP MPLS LSP Ping.

CVSS2 => (AV:N/AC:L/Au:N/C:P/I:N/A:N)

CVSS Base Score
Impact Subscore
Exploitability Subscore
5/10
2.9/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
Partial
None
None
Affected software
Huawei -> 5710hi firmware 
Huawei -> S7703 firmware 
Huawei -> 5310hi firmware 
Huawei -> S9306 firmware 
Huawei -> S9300e firmware 
Huawei -> S9300 firmware 
Huawei -> 5710ei firmware 
Huawei -> S9312 firmware 
Huawei -> S12712 firmware 
Huawei -> S9303 firmware 
Huawei -> S7700 firmware 
Huawei -> S9303e firmware 
Huawei -> S9703 firmware 
Huawei -> 5300hi firmware 
Huawei -> S9700 firmware 
Huawei -> S9712 firmware 
Huawei -> S7706 firmware 
Huawei -> S9706 firmware 
Huawei -> 6300ei firmware 
Huawei -> 5700hi firmware 
Huawei -> 6700ei firmware 
Huawei -> S9312e firmware 
Huawei -> S7712 firmware 
Huawei -> S9306e firmware 
Huawei -> S12708 firmware 
Huawei -> 5310ei firmware 

 References:
http://www.huawei.com/en/psirt/security-advisories/hw-372145

Copyright 2024, cxsecurity.com

 

Back to Top