Vulnerability Details : CVE-2015-7845
The exception handling mechanism in the CLI Module in Huawei eSpace U1910, U1911, U1930, U1960, U1980, and U1981 unified gateways with software before V100R001C20SPH605 allows remote attackers to cause a denial of service (CLI outage) via crafted SSH packets.
Vulnerability category: Input validationDenial of service
Products affected by CVE-2015-7845
- cpe:2.3:o:huawei:espace_firmware:*:*:*:*:*:*:*:*When used together with: Huawei » Espace Unified Gateway U1910When used together with: Huawei » Espace Unified Gateway U1911When used together with: Huawei » Espace Unified Gateway U1930When used together with: Huawei » Espace Unified Gateway U1960When used together with: Huawei » Espace Unified Gateway U1980When used together with: Huawei » Espace Unified Gateway U1981
Exploit prediction scoring system (EPSS) score for CVE-2015-7845
0.30%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 69 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2015-7845
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
5.0
|
MEDIUM | AV:N/AC:L/Au:N/C:N/I:N/A:P |
10.0
|
2.9
|
NIST |
CWE ids for CVE-2015-7845
-
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.Assigned by: nvd@nist.gov (Primary)
References for CVE-2015-7845
-
http://www1.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-453512.htm
Security Advisory - DoS Vulnerability in Huawei U1900 CLI ModuleVendor Advisory
Jump to