CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
EPSS
Percentile
77.0%
Huawei Quidway switches have the authority control vulnerability in access authentication, which may be exploited by attackers to obtain higher access permissions. (Vulnerability ID: HWPSIRT-2014-11119)
This Vulnerability has been assigned Common Vulnerabilities and Exposures (CVE) ID: CVE-2015-1460.
Currently, official fixes are available.
Vendor | Product | Version | CPE |
---|---|---|---|
huawei | s2350_firmware | v200r003c00spc300 | cpe:2.3:o:huawei:s2350_firmware:v200r003c00spc300:*:*:*:*:*:*:* |
huawei | s2750_firmware | v200r003c00spc300 | cpe:2.3:o:huawei:s2750_firmware:v200r003c00spc300:*:*:*:*:*:*:* |
huawei | quidway_s5300_firmware | v200r003c00spc300 | cpe:2.3:o:huawei:quidway_s5300_firmware:v200r003c00spc300:*:*:*:*:*:*:* |
huawei | quidway_s5700_firmware | v200r003c00spc300 | cpe:2.3:o:huawei:quidway_s5700_firmware:v200r003c00spc300:*:*:*:*:*:*:* |
huawei | quidway_s6300_firmware | v200r003c00spc300 | cpe:2.3:o:huawei:quidway_s6300_firmware:v200r003c00spc300:*:*:*:*:*:*:* |
huawei | quidway_s6700_firmware | v200r003c00spc300 | cpe:2.3:o:huawei:quidway_s6700_firmware:v200r003c00spc300:*:*:*:*:*:*:* |
huawei | quidway_s7700_firmware | v200r003c00spc300 | cpe:2.3:o:huawei:quidway_s7700_firmware:v200r003c00spc300:*:*:*:*:*:*:* |
huawei | quidway_s7700_firmware | v200r003c00spc500 | cpe:2.3:o:huawei:quidway_s7700_firmware:v200r003c00spc500:*:*:*:*:*:*:* |
huawei | quidway_s9300_firmware | v200r003c00spc300 | cpe:2.3:o:huawei:quidway_s9300_firmware:v200r003c00spc300:*:*:*:*:*:*:* |
huawei | quidway_s9300_firmware | v200r003c00spc500 | cpe:2.3:o:huawei:quidway_s9300_firmware:v200r003c00spc500:*:*:*:*:*:*:* |