Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
huaweiHuawei TechnologiesHUAWEI-SA-20140924-01-VRP
HistorySep 24, 2014 - 12:00 a.m.

Security Advisory-Information Leakage Vulnerability via MPLS Ping in VRP Platform

2014-09-2400:00:00
Huawei Technologies
www.huawei.com
31

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

CVSS3

5.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

EPSS

0.001

Percentile

40.4%

JSON

VRP (Versatile Routing Platform) has been developed by Huawei to provide improved IP routing services. The VRP has been widely applied to network devices, including high-end and low-end switches and routers, wireless and transmission devices.

Information leakage vulnerability exists in several devices using VRP platform, because the MPLS LSP Ping service is bound to unnecessary interfaces, which can cause the leak of IP addresses of devices (Vulnerability ID: HWPSIRT-2014-0418).

This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2014-8570.

Affected configurations

Vulners
Node
huaweis9300_firmwareMatchv100r002
OR
huaweis9300_firmwareMatchv100r003
OR
huaweis9300_firmwareMatchv100r006
OR
huaweis9300_firmwareMatchv200r001
OR
huaweis9300_firmwareMatchv200r002
OR
huaweis9300_firmwareMatchv200r003
OR
huaweis9300_firmwareMatchv200r005
OR
huaweis9303_firmwareMatchv100r002
OR
huaweis9303_firmwareMatchv100r003
OR
huaweis9303_firmwareMatchv100r006
OR
huaweis9303_firmwareMatchv200r001
OR
huaweis9303_firmwareMatchv200r002
OR
huaweis9303_firmwareMatchv200r003
OR
huaweis9303_firmwareMatchv200r005
OR
huaweis9306_firmwareMatchv100r002
OR
huaweis9306_firmwareMatchv100r003
OR
huaweis9306_firmwareMatchv100r006
OR
huaweis9306_firmwareMatchv200r001
OR
huaweis9306_firmwareMatchv200r002
OR
huaweis9306_firmwareMatchv200r003
OR
huaweis9306_firmwareMatchv200r005
OR
huaweis9312_firmwareMatchv100r002
OR
huaweis9312_firmwareMatchv100r003
OR
huaweis9312_firmwareMatchv100r006
OR
huaweis9312_firmwareMatchv200r001
OR
huaweis9312_firmwareMatchv200r002
OR
huaweis9312_firmwareMatchv200r003
OR
huaweis9312_firmwareMatchv200r005
OR
huaweis7700_firmwareMatchv100r002
OR
huaweis7700_firmwareMatchv100r003
OR
huaweis7700_firmwareMatchv100r006
OR
huaweis7700_firmwareMatchv200r001
OR
huaweis7700_firmwareMatchv200r002
OR
huaweis7700_firmwareMatchv200r003
OR
huaweis7700_firmwareMatchv200r005
OR
huaweis7703_firmwareMatchv100r002
OR
huaweis7703_firmwareMatchv100r003
OR
huaweis7703_firmwareMatchv100r006
OR
huaweis7703_firmwareMatchv200r001
OR
huaweis7703_firmwareMatchv200r002
OR
huaweis7703_firmwareMatchv200r003
OR
huaweis7703_firmwareMatchv200r005
OR
huaweis7706_firmwareMatchv100r002
OR
huaweis7706_firmwareMatchv100r003
OR
huaweis7706_firmwareMatchv100r006
OR
huaweis7706_firmwareMatchv200r001
OR
huaweis7706_firmwareMatchv200r002
OR
huaweis7706_firmwareMatchv200r003
OR
huaweis7706_firmwareMatchv200r005
OR
huaweis7712_firmwareMatchv100r002
OR
huaweis7712_firmwareMatchv100r003
OR
huaweis7712_firmwareMatchv100r006
OR
huaweis7712_firmwareMatchv200r001
OR
huaweis7712_firmwareMatchv200r002
OR
huaweis7712_firmwareMatchv200r003
OR
huaweis7712_firmwareMatchv200r005
OR
huaweis9300e_firmwareMatchv200r001
OR
huaweis9300e_firmwareMatchv200r002
OR
huaweis9300e_firmwareMatchv200r003
OR
huaweis9300e_firmwareMatchv200r005
OR
huaweis9303e_firmwareMatchv200r001
OR
huaweis9303e_firmwareMatchv200r002
OR
huaweis9303e_firmwareMatchv200r003
OR
huaweis9303e_firmwareMatchv200r005
OR
huaweis9306e_firmwareMatchv200r001
OR
huaweis9306e_firmwareMatchv200r002
OR
huaweis9306e_firmwareMatchv200r003
OR
huaweis9306e_firmwareMatchv200r005
OR
huaweis9312e_firmwareMatchv200r001
OR
huaweis9312e_firmwareMatchv200r002
OR
huaweis9312e_firmwareMatchv200r003
OR
huaweis9312e_firmwareMatchv200r005
OR
huaweis9700_firmwareMatchv200r001
OR
huaweis9700_firmwareMatchv200r002
OR
huaweis9700_firmwareMatchv200r003
OR
huaweis9700_firmwareMatchv200r005
OR
huaweis9703_firmwareMatchv200r001
OR
huaweis9703_firmwareMatchv200r002
OR
huaweis9703_firmwareMatchv200r003
OR
huaweis9703_firmwareMatchv200r005
OR
huaweis9706_firmwareMatchv200r001
OR
huaweis9706_firmwareMatchv200r002
OR
huaweis9706_firmwareMatchv200r003
OR
huaweis9706_firmwareMatchv200r005
OR
huaweis9712_firmwareMatchv200r001
OR
huaweis9712_firmwareMatchv200r002
OR
huaweis9712_firmwareMatchv200r003
OR
huaweis9712_firmwareMatchv200r005
OR
huaweis12708_firmwareMatchv200r005
OR
huaweis12712_firmwareMatchv200r005
OR
huawei5700hi_firmwareMatchv100r006
OR
huawei5700hi_firmwareMatchv200r001
OR
huawei5700hi_firmwareMatchv200r002
OR
huawei5700hi_firmwareMatchv200r003
OR
huawei5700hi_firmwareMatchv200r005
OR
huawei5300hi_firmwareMatchv100r006
OR
huawei5300hi_firmwareMatchv200r001
OR
huawei5300hi_firmwareMatchv200r002
OR
huawei5300hi_firmwareMatchv200r003
OR
huawei5300hi_firmwareMatchv200r005
OR
huawei5710ei_firmwareMatchv200r002
OR
huawei5710ei_firmwareMatchv200r003
OR
huawei5710ei_firmwareMatchv200r005
OR
huawei5310ei_firmwareMatchv200r002
OR
huawei5310ei_firmwareMatchv200r003
OR
huawei5310ei_firmwareMatchv200r005
OR
huawei5710hi_firmwareMatchv200r003
OR
huawei5710hi_firmwareMatchv200r005
OR
huawei5310hi_firmwareMatchv200r003
OR
huawei5310hi_firmwareMatchv200r005
OR
huawei6700ei_firmwareMatchv200r005
OR
huawei6300ei_firmwareMatchv200r005
VendorProductVersionCPE
huaweis9300_firmwarev100r002cpe:2.3:a:huawei:s9300_firmware:v100r002:*:*:*:*:*:*:*
huaweis9300_firmwarev100r003cpe:2.3:a:huawei:s9300_firmware:v100r003:*:*:*:*:*:*:*
huaweis9300_firmwarev100r006cpe:2.3:a:huawei:s9300_firmware:v100r006:*:*:*:*:*:*:*
huaweis9300_firmwarev200r001cpe:2.3:a:huawei:s9300_firmware:v200r001:*:*:*:*:*:*:*
huaweis9300_firmwarev200r002cpe:2.3:a:huawei:s9300_firmware:v200r002:*:*:*:*:*:*:*
huaweis9300_firmwarev200r003cpe:2.3:a:huawei:s9300_firmware:v200r003:*:*:*:*:*:*:*
huaweis9300_firmwarev200r005cpe:2.3:a:huawei:s9300_firmware:v200r005:*:*:*:*:*:*:*
huaweis9303_firmwarev100r002cpe:2.3:o:huawei:s9303_firmware:v100r002:*:*:*:*:*:*:*
huaweis9303_firmwarev100r003cpe:2.3:o:huawei:s9303_firmware:v100r003:*:*:*:*:*:*:*
huaweis9303_firmwarev100r006cpe:2.3:o:huawei:s9303_firmware:v100r006:*:*:*:*:*:*:*
Rows per page:
1-10 of 1121

Related

cve 1
cvelist 1
prion 1
nvd 1
cve
cve
CVE-2014-8570
2017-04-02 20:59:00
cvelist
cvelist
CVE-2014-8570
2017-04-02 20:00:00
prion
prion
Input validation
2017-04-02 20:59:00
nvd
nvd
CVE-2014-8570
2017-04-02 20:59:00

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

CVSS3

5.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

EPSS

0.001

Percentile

40.4%

JSON
Related for HUAWEI-SA-20140924-01-VRP
cve1cvelist1prion1nvd1