CVE-2015-3911 : Huawei E587 Mobile WiFi with firmware before 11.203.30.00.00 allows remote attac

Huawei E587 Mobile WiFi with firmware before 11.203.30.00.00 allows remote attackers to bypass authentication, change configurations, send messages, and cause a denial of service (device restart) via unspecified vectors.

Published 2015-05-21 19:59:00

Updated 2025-04-12 10:46:41

Source MITRE

View at NVD, CVE.org

Vulnerability category: Denial of service

Products affected by CVE-2015-3911

Huawei » E587 Mobile Wifi Firmware
Versions up to, including, (<=) 11.100.00.00.00
cpe:2.3:o:huawei:e587_mobile_wifi_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Huawei » E587 Mobile Wifi

Exploit prediction scoring system (EPSS) score for CVE-2015-3911

EPSS FAQ

0.23%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 43 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2015-3911

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
9.0	HIGH	AV:N/AC:L/Au:N/C:P/I:P/A:C	10.0	8.5	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Complete

CWE ids for CVE-2015-3911

CWE-284 Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2015-3911

http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-425408.htm

Security Advisory-Authentication Bypass Vulnerability on E587 Mobile WiFi
Vendor Advisory
http://www.securityfocus.com/bid/74434

Huawei E587 Authentication Bypass Vulnerability

Jump to

Vulnerability Details : CVE-2015-3911

Products affected by CVE-2015-3911

Exploit prediction scoring system (EPSS) score for CVE-2015-3911

CVSS scores for CVE-2015-3911

CWE ids for CVE-2015-3911

References for CVE-2015-3911