CVE-2015-2800
First published: Thu Jun 08 2017(Updated: )
The user authentication module in Huawei Campus switches S5700, S5300, S6300, and S6700 with software before V200R001SPH012 and S7700, S9300, and S9700 with software before V200R001SPH015 allows remote attackers to cause a denial of service (device restart) via vectors involving authentication, which trigger an array access violation.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Huawei Campus S5700 firmware | <=v200r001c00spc300 | |
| Huawei S5700HI | ||
| Huawei 5300HI firmware | <=v200r001c00spc300 | |
| Huawei Campus S5300 | ||
| Huawei S6300EI firmware | <=v200r001c00spc300 | |
| Huawei Campus S6300 | ||
| Huawei S6700EI Firmware | <=v200r001c00spc300 | |
| Huawei S6700 | ||
| Huawei Campus S7700 firmware | <=v200r001c00spc300 | |
| Huawei Campus S7700 firmware | ||
| Huawei Campus S9300 Firmware | <=v200r001c00spc300 | |
| Huawei Campus S9300 Firmware | ||
| Huawei LSW S9700 firmware | <=v200r001c00spc300 | |
| Huawei Campus LSW S9700 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2015-2800?
CVE-2015-2800 is classified as a denial of service vulnerability that causes device restarts.
How do I fix CVE-2015-2800?
To mitigate CVE-2015-2800, upgrade your Huawei Campus switch firmware to a version that is V200R001SPH012 or later for affected models.
Which Huawei devices are affected by CVE-2015-2800?
CVE-2015-2800 affects the Huawei S5700, S5300, S6300, S6700, S7700, S9300, and S9700 models with specific firmware versions before updates.
What types of attacks can exploit CVE-2015-2800?
CVE-2015-2800 can be exploited by remote attackers through vulnerabilities in the user authentication module.
Is there a workaround for CVE-2015-2800?
There are no effective workarounds for CVE-2015-2800; the recommended solution is to upgrade the firmware.
- agent/references
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/weakness
- agent/severity
- agent/author
- agent/description
- agent/event
- agent/first-publish-date
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/huawei
- canonical/huawei campus s5700 firmware
- version/huawei campus s5700 firmware/v200r001c00spc300
- canonical/huawei s5700hi
- canonical/huawei 5300hi firmware
- version/huawei 5300hi firmware/v200r001c00spc300
- canonical/huawei campus s5300
- canonical/huawei s6300ei firmware
- version/huawei s6300ei firmware/v200r001c00spc300
- canonical/huawei campus s6300
- canonical/huawei s6700ei firmware
- version/huawei s6700ei firmware/v200r001c00spc300
- canonical/huawei s6700
- canonical/huawei campus s7700 firmware
- version/huawei campus s7700 firmware/v200r001c00spc300
- canonical/huawei campus s9300 firmware
- version/huawei campus s9300 firmware/v200r001c00spc300
- canonical/huawei lsw s9700 firmware
- version/huawei lsw s9700 firmware/v200r001c00spc300
- canonical/huawei campus lsw s9700