CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Vulnerability Details : CVE-2015-5434

HPE Networking Products, originally branded as Comware 5, Comware 7, H3C, or HP, allow remote attackers to bypass intended access restrictions or cause a denial of service via "Virtual routing and forwarding (VRF) hopping."
Publish Date : 2016-01-05 Last Update Date : 2016-11-28
Search Twitter   Search YouTube   Search Google

- CVSS Scores & Vulnerability Types

CVSS Score
6.4
Confidentiality Impact None (There is no impact to the confidentiality of the system.)
Integrity Impact Partial (Modification of some system files or information is possible, but the attacker does not have control over what can be modified, or the scope of what the attacker can affect is limited.)
Availability Impact Partial (There is reduced performance or interruptions in resource availability.)
Access Complexity Low (Specialized access conditions or extenuating circumstances do not exist. Very little knowledge or skill is required to exploit. )
Authentication Not required (Authentication is not required to exploit the vulnerability.)
Gained Access None
Vulnerability Type(s) Denial Of ServiceBypass a restriction or similar
CWE ID 264

- Products Affected By CVE-2015-5434

# Product Type Vendor Product Version Update Edition Language
1 Hardware HP Jc072b Hp 12500 Main Processing Unit - Version Details Vulnerabilities
2 Hardware HP Jc085a Hp A12518 Switch Chassis - Version Details Vulnerabilities
3 Hardware HP Jc086a Hp A12508 Switch Chassis - Version Details Vulnerabilities
4 Hardware HP Jc124a Hp A9508 Switch Chassis - Version Details Vulnerabilities
5 Hardware HP Jc124b Hp 9505 Switch Chassis - Version Details Vulnerabilities
6 Hardware HP Jc125a Hp A9512 Switch Chassis - Version Details Vulnerabilities
7 Hardware HP Jc125b Hp 9512 Switch Chassis - Version Details Vulnerabilities
8 Hardware HP Jc474a Hp A9508-v Switch Chassis - Version Details Vulnerabilities
9 Hardware HP Jc474b Hp 9508-v Switch Chassis - Version Details Vulnerabilities
10 Hardware HP Jc611a Hp 10508-v Switch Chassis - Version Details Vulnerabilities
11 Hardware HP Jc612a Hp 10508 Switch Chassis - Version Details Vulnerabilities
12 Hardware HP Jc613a Hp 10504 Switch Chassis - Version Details Vulnerabilities
13 Hardware HP Jc652a Hp 12508 Dc Switch Chassis - Version Details Vulnerabilities
14 Hardware HP Jc653a Hp 12518 Dc Switch Chassis - Version Details Vulnerabilities
15 Hardware HP Jc654a Hp 12504 Ac Switch Chassis - Version Details Vulnerabilities
16 Hardware HP Jc655a Hp 12504 Dc Switch Chassis - Version Details Vulnerabilities
17 Hardware HP Jc748a Hp 10512 Switch Chassis - Version Details Vulnerabilities
18 Hardware HP Jc808a Hp 12500 Taa Main Processing Unit - Version Details Vulnerabilities
19 Hardware HP Jf430a Hp A12518 Switch Chassis - Version Details Vulnerabilities
20 Hardware HP Jf430b Hp 12518 Switch Chassis - Version Details Vulnerabilities
21 Hardware HP Jf430c Hp 12518 Ac Switch Chassis - Version Details Vulnerabilities
22 Hardware HP Jf431a Hp A12508 Switch Chassis - Version Details Vulnerabilities
23 Hardware HP Jf431b Hp 12508 Switch Chassis - Version Details Vulnerabilities
24 Hardware HP Jf431c Hp 12508 Ac Switch Chassis - Version Details Vulnerabilities
25 Hardware HP Jg296a Hp 5920af-24xg Switch - Version Details Vulnerabilities
26 Hardware HP Jg353a Hp Hsr6602-g Router - Version Details Vulnerabilities
27 Hardware HP Jg354a Hp Hsr6602-xg Router - Version Details Vulnerabilities
28 Hardware HP Jg361a Hp Hsr6802 Router Chassis - Version Details Vulnerabilities
29 Hardware HP Jg361b Hp Hsr6802 Router Chassis - Version Details Vulnerabilities
30 Hardware HP Jg362a Hp Hsr6804 Router Chassis - Version Details Vulnerabilities
31 Hardware HP Jg362b Hp Hsr6804 Router Chassis - Version Details Vulnerabilities
32 Hardware HP Jg363a Hp Hsr6808 Router Chassis - Version Details Vulnerabilities
33 Hardware HP Jg363b Hp Hsr6808 Router Chassis - Version Details Vulnerabilities
34 Hardware HP Jg364a Hp Hsr6800 Rse-x2 Router Main Processing Unit - Version Details Vulnerabilities
35 Hardware HP Jg402a Hp Msr4080 Router Chassis - Version Details Vulnerabilities
36 Hardware HP Jg403a Hp Msr4060 Router Chassis - Version Details Vulnerabilities
37 Hardware HP Jg404a Hp Msr3064 Router - Version Details Vulnerabilities
38 Hardware HP Jg405a Hp Msr3044 Router - Version Details Vulnerabilities
39 Hardware HP Jg406a Hp Msr3024 Ac Router - Version Details Vulnerabilities
40 Hardware HP Jg407a Hp Msr3024 Dc Router - Version Details Vulnerabilities
41 Hardware HP Jg408a Hp Msr3024 Poe Router - Version Details Vulnerabilities
42 Hardware HP Jg409a Hp Msr3012 Ac Router - Version Details Vulnerabilities
43 Hardware HP Jg410a Hp Msr3012 Dc Router - Version Details Vulnerabilities
44 Hardware HP Jg411a Hp Msr2003 Ac Router - Version Details Vulnerabilities
45 Hardware HP Jg412a Hp Msr4000 Mpu-100 Main Processing Unit - Version Details Vulnerabilities
46 OS HP Jg496a Hp 10500 Type A Mpu With Comware 7.0 Version Details Vulnerabilities
47 OS HP Jg497a Hp 12500 Mpu W/comware 7.0 Version Details Vulnerabilities
48 Hardware HP Jg555a Hp 5920af-24xg Taa Switch - Version Details Vulnerabilities
49 Hardware HP Jg734a Hp Msr2004-24 Ac Router - Version Details Vulnerabilities
50 Hardware HP Jg735a) Hp Msr2004-48 Router - Version Details Vulnerabilities
51 Hardware HP Jg776a Hp Hsr6602-g Taa-compliant Router - Version Details Vulnerabilities
52 Hardware HP Jg777a Hp Hsr6602-xg Taa-compliant Router - Version Details Vulnerabilities
53 Hardware HP Jg779a Hp Hsr6800 Rse-x2 Router Taa-compliant Main Processing Unit - Version Details Vulnerabilities
54 Hardware HP Jg782a Hp Ff 12508e Ac Switch Chassis - Version Details Vulnerabilities
55 Hardware HP Jg783a Hp Ff 12508e Dc Switch Chassis - Version Details Vulnerabilities
56 Hardware HP Jg784a Hp Ff 12518e Ac Switch Chassis - Version Details Vulnerabilities
57 Hardware HP Jg785a Hp Ff 12518e Dc Switch Chassis - Version Details Vulnerabilities
58 Application HP Jg786a Hp Flexfabric 12500 4-port 100gbe Cfp Fd - Version Details Vulnerabilities
59 Application HP Jg787a Hp Flexfabric 12500 4-port 100gbe Cfp Fd Taa - Version Details Vulnerabilities
60 Application HP Jg788a Hp Flexfabric 12500 4-port 100gbe Cfp Fg - Version Details Vulnerabilities
61 Application HP Jg789a Hp Flexfabric 12500 4-port 100gbe Cfp Fg Taa - Version Details Vulnerabilities
62 Application HP Jg798a Hp Flexfabric 12508e Fabric - Version Details Vulnerabilities
63 Hardware HP Jg802a Hp Ff 12500e Mpu - Version Details Vulnerabilities
64 Hardware HP Jg803a Hp Flexfabric 12500e Taa-compliant Main Processing Unit - Version Details Vulnerabilities
65 Application HP Jg810aae Hp Vsr1001 Virtual Services Router 60 Day Evaluation - Version Details Vulnerabilities
66 Hardware HP Jg811aae Hp Vsr1001 Comware 7 Virtual Services Router - Version Details Vulnerabilities
67 Hardware HP Jg812aae Hp Vsr1004 Comware 7 Virtual Services Router - Version Details Vulnerabilities
68 Hardware HP Jg813aae Hp Vsr1008 Comware 7 Virtual Services Router - Version Details Vulnerabilities
69 Hardware HP Jg820a Hp 10504 Taa Switch Chassis - Version Details Vulnerabilities
70 Hardware HP Jg821a Hp 10508 Taa Switch Chassis - Version Details Vulnerabilities
71 Hardware HP Jg822a Hp 10508-v Taa Switch Chassis - Version Details Vulnerabilities
72 Hardware HP Jg823a Hp 10512 Taa Switch Chassis - Version Details Vulnerabilities
73 Hardware HP Jg834a Hp Flexfabric 12508e Ac Switch Taa-compliant Chassis - Version Details Vulnerabilities
74 Hardware HP Jg835a Hp Flexfabric 12508e Dc Switch Taa-compliant Chassis - Version Details Vulnerabilities
75 Hardware HP Jg836a Hp Flexfabric 12518e Ac Switch Taa-compliant Chassis - Version Details Vulnerabilities
76 Hardware HP Jg837a Hp Flexfabric 12518e Dc Switch Taa-compliant Chassis - Version Details Vulnerabilities
77 Hardware HP Jg861a Hp Msr3024 Taa-compliant Ac Router - Version Details Vulnerabilities
78 Hardware HP Jg866a Hp Msr2003 Taa-compliant Ac Router - Version Details Vulnerabilities
79 Hardware HP Jg869a Hp Msr4000 Taa-compliant Mpu-100 Main Processing Unit - Version Details Vulnerabilities
80 Hardware HP Jg875a Hp Msr1002-4 Ac Router - Version Details Vulnerabilities
81 Hardware HP Jh060a Hp Msr1003-8s Ac Router - Version Details Vulnerabilities
82 Hardware HP Jh075a) Hp Hsr6800 Rse-x3 Router Main Processing Unit - Version Details Vulnerabilities
83 Hardware HP Jh179a Hp Flexfabric 5930 4-slot Switch - Version Details Vulnerabilities
84 Hardware HP Jh188a Hp Flexfabric 5930 4-slot Taa-compliant Switch - Version Details Vulnerabilities
85 Application HP Jh192a Hp 10500 48-port Gig-t (rj45) Se - Version Details Vulnerabilities
86 Application HP Jh196a Hp 10500 2-port 100gbe Cfp Ec - Version Details Vulnerabilities
87 OS HP Jh198a Hp 10500 Type D Main Processing Unit With Comware 7.0 Version Details Vulnerabilities

- Number Of Affected Versions By Product

Vendor Product Vulnerable Versions
HP Jc072b Hp 12500 Main Processing Unit 1
HP Jc085a Hp A12518 Switch Chassis 1
HP Jc086a Hp A12508 Switch Chassis 1
HP Jc124a Hp A9508 Switch Chassis 1
HP Jc124b Hp 9505 Switch Chassis 1
HP Jc125a Hp A9512 Switch Chassis 1
HP Jc125b Hp 9512 Switch Chassis 1
HP Jc474a Hp A9508-v Switch Chassis 1
HP Jc474b Hp 9508-v Switch Chassis 1
HP Jc611a Hp 10508-v Switch Chassis 1
HP Jc612a Hp 10508 Switch Chassis 1
HP Jc613a Hp 10504 Switch Chassis 1
HP Jc652a Hp 12508 Dc Switch Chassis 1
HP Jc653a Hp 12518 Dc Switch Chassis 1
HP Jc654a Hp 12504 Ac Switch Chassis 1
HP Jc655a Hp 12504 Dc Switch Chassis 1
HP Jc748a Hp 10512 Switch Chassis 1
HP Jc808a Hp 12500 Taa Main Processing Unit 1
HP Jf430a Hp A12518 Switch Chassis 1
HP Jf430b Hp 12518 Switch Chassis 1
HP Jf430c Hp 12518 Ac Switch Chassis 1
HP Jf431a Hp A12508 Switch Chassis 1
HP Jf431b Hp 12508 Switch Chassis 1
HP Jf431c Hp 12508 Ac Switch Chassis 1
HP Jg296a Hp 5920af-24xg Switch 1
HP Jg353a Hp Hsr6602-g Router 1
HP Jg354a Hp Hsr6602-xg Router 1
HP Jg361a Hp Hsr6802 Router Chassis 1
HP Jg361b Hp Hsr6802 Router Chassis 1
HP Jg362a Hp Hsr6804 Router Chassis 1
HP Jg362b Hp Hsr6804 Router Chassis 1
HP Jg363a Hp Hsr6808 Router Chassis 1
HP Jg363b Hp Hsr6808 Router Chassis 1
HP Jg364a Hp Hsr6800 Rse-x2 Router Main Processing Unit 1
HP Jg402a Hp Msr4080 Router Chassis 1
HP Jg403a Hp Msr4060 Router Chassis 1
HP Jg404a Hp Msr3064 Router 1
HP Jg405a Hp Msr3044 Router 1
HP Jg406a Hp Msr3024 Ac Router 1
HP Jg407a Hp Msr3024 Dc Router 1
HP Jg408a Hp Msr3024 Poe Router 1
HP Jg409a Hp Msr3012 Ac Router 1
HP Jg410a Hp Msr3012 Dc Router 1
HP Jg411a Hp Msr2003 Ac Router 1
HP Jg412a Hp Msr4000 Mpu-100 Main Processing Unit 1
HP Jg496a Hp 10500 Type A Mpu With Comware 1
HP Jg497a Hp 12500 Mpu W/comware 1
HP Jg555a Hp 5920af-24xg Taa Switch 1
HP Jg734a Hp Msr2004-24 Ac Router 1
HP Jg735a) Hp Msr2004-48 Router 1
HP Jg776a Hp Hsr6602-g Taa-compliant Router 1
HP Jg777a Hp Hsr6602-xg Taa-compliant Router 1
HP Jg779a Hp Hsr6800 Rse-x2 Router Taa-compliant Main Processing Unit 1
HP Jg782a Hp Ff 12508e Ac Switch Chassis 1
HP Jg783a Hp Ff 12508e Dc Switch Chassis 1
HP Jg784a Hp Ff 12518e Ac Switch Chassis 1
HP Jg785a Hp Ff 12518e Dc Switch Chassis 1
HP Jg786a Hp Flexfabric 12500 4-port 100gbe Cfp Fd 1
HP Jg787a Hp Flexfabric 12500 4-port 100gbe Cfp Fd Taa 1
HP Jg788a Hp Flexfabric 12500 4-port 100gbe Cfp Fg 1
HP Jg789a Hp Flexfabric 12500 4-port 100gbe Cfp Fg Taa 1
HP Jg798a Hp Flexfabric 12508e Fabric 1
HP Jg802a Hp Ff 12500e Mpu 1
HP Jg803a Hp Flexfabric 12500e Taa-compliant Main Processing Unit 1
HP Jg810aae Hp Vsr1001 Virtual Services Router 60 Day Evaluation 1
HP Jg811aae Hp Vsr1001 Comware 7 Virtual Services Router 1
HP Jg812aae Hp Vsr1004 Comware 7 Virtual Services Router 1
HP Jg813aae Hp Vsr1008 Comware 7 Virtual Services Router 1
HP Jg820a Hp 10504 Taa Switch Chassis 1
HP Jg821a Hp 10508 Taa Switch Chassis 1
HP Jg822a Hp 10508-v Taa Switch Chassis 1
HP Jg823a Hp 10512 Taa Switch Chassis 1
HP Jg834a Hp Flexfabric 12508e Ac Switch Taa-compliant Chassis 1
HP Jg835a Hp Flexfabric 12508e Dc Switch Taa-compliant Chassis 1
HP Jg836a Hp Flexfabric 12518e Ac Switch Taa-compliant Chassis 1
HP Jg837a Hp Flexfabric 12518e Dc Switch Taa-compliant Chassis 1
HP Jg861a Hp Msr3024 Taa-compliant Ac Router 1
HP Jg866a Hp Msr2003 Taa-compliant Ac Router 1
HP Jg869a Hp Msr4000 Taa-compliant Mpu-100 Main Processing Unit 1
HP Jg875a Hp Msr1002-4 Ac Router 1
HP Jh060a Hp Msr1003-8s Ac Router 1
HP Jh075a) Hp Hsr6800 Rse-x3 Router Main Processing Unit 1
HP Jh179a Hp Flexfabric 5930 4-slot Switch 1
HP Jh188a Hp Flexfabric 5930 4-slot Taa-compliant Switch 1
HP Jh192a Hp 10500 48-port Gig-t (rj45) Se 1
HP Jh196a Hp 10500 2-port 100gbe Cfp Ec 1
HP Jh198a Hp 10500 Type D Main Processing Unit With Comware 1

- References For CVE-2015-5434

http://www.securityfocus.com/bid/79869
BID 79869
https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04779492
HP SSRT102034

- Metasploit Modules Related To CVE-2015-5434

There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information)


CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.