Vulnerability Details : CVE-2015-3912
Huawei E355s Mobile WiFi with firmware before 22.158.45.02.625 and WEBUI before 13.100.04.01.625 allows remote attackers to obtain sensitive configuration information by sniffing the network or sending unspecified commands.
Vulnerability category: Information leak
Products affected by CVE-2015-3912
- cpe:2.3:a:huawei:webui:*:*:*:*:*:*:*:*
- cpe:2.3:o:huawei:e355s_mobile_wifi_firmware:*:*:*:*:*:*:*:*When used together with: Huawei » E355s Mobile Wifi
Exploit prediction scoring system (EPSS) score for CVE-2015-3912
0.30%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 65 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2015-3912
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
5.0
|
MEDIUM | AV:N/AC:L/Au:N/C:P/I:N/A:N |
10.0
|
2.9
|
NIST |
CWE ids for CVE-2015-3912
-
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.Assigned by: nvd@nist.gov (Primary)
References for CVE-2015-3912
-
http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-425435.htm
Security Advisory-Information Disclosure Vulnerability on E355s Mobile WiFiVendor Advisory
-
http://www.securityfocus.com/bid/74397
Huawei E355s Information Disclosure Vulnerability
Jump to