What is the severity of CVE-2015-8084?

CVE-2015-8084 has a high severity rating as it can cause a denial of service via crafted DHCP packets.

How do I fix CVE-2015-8084?

To fix CVE-2015-8084, upgrade the Huawei Unified Security Gateway firmware to V300R001C10SPC600 or later.

What is DHCP Snooping as it relates to CVE-2015-8084?

DHCP Snooping is a network security feature that validates DHCP messages and is linked to the vulnerability in CVE-2015-8084.

Can CVE-2015-8084 be exploited remotely?

Yes, CVE-2015-8084 can be exploited remotely by attackers sending crafted DHCP packets.

Vulnerability/
CVE-2015-8084

high

7.1

CWE

7/12/2015

6/8/2024

CVE-2015-8084: Input Validation

Q: Which devices are affected by CVE-2015-8084?

CVE-2015-8084 affects Huawei USG5500, USG2100, USG2200, and USG5100 unified security gateways with versions before V300R001C10SPC600.

First published: Mon Dec 07 2015(Updated: )

Huawei USG5500, USG2100, USG2200, and USG5100 unified security gateways with software before V300R001C10SPC600, when "DHCP Snooping" is enabled and either "option82 insert" or "option82 rebuild" is enabled on an interface, allow remote attackers to cause a denial of service (reboot) via crafted DHCP packets.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Huawei Unified Security Gateway Firmware	<=v300r001c10
Huawei E200E-USG2100
Huawei USG2200 Firmware
Huawei USG5100 Firmware
Huawei USG5500 firmware

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2015-8084?
CVE-2015-8084 has a high severity rating as it can cause a denial of service via crafted DHCP packets.
How do I fix CVE-2015-8084?
To fix CVE-2015-8084, upgrade the Huawei Unified Security Gateway firmware to V300R001C10SPC600 or later.
Which devices are affected by CVE-2015-8084?
CVE-2015-8084 affects Huawei USG5500, USG2100, USG2200, and USG5100 unified security gateways with versions before V300R001C10SPC600.
What is DHCP Snooping as it relates to CVE-2015-8084?
DHCP Snooping is a network security feature that validates DHCP messages and is linked to the vulnerability in CVE-2015-8084.
Can CVE-2015-8084 be exploited remotely?
Yes, CVE-2015-8084 can be exploited remotely by attackers sending crafted DHCP packets.

agent/references
agent/type
collector/mitre-cve
source/MITRE
agent/author
agent/weakness
agent/severity
agent/last-modified-date
agent/description
agent/first-publish-date
agent/event
agent/source
agent/tags
agent/softwarecombine
collector/nvd-index
agent/software-canonical-lookup-request
vendor/huawei
canonical/huawei unified security gateway firmware
version/huawei unified security gateway firmware/v300r001c10
canonical/huawei e200e-usg2100
canonical/huawei usg2200 firmware
canonical/huawei usg5100 firmware
canonical/huawei usg5500 firmware

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.

Frequently Asked Questions

What is the severity of CVE-2015-8084?
CVE-2015-8084 has a high severity rating as it can cause a denial of service via crafted DHCP packets.
How do I fix CVE-2015-8084?
To fix CVE-2015-8084, upgrade the Huawei Unified Security Gateway firmware to V300R001C10SPC600 or later.
Which devices are affected by CVE-2015-8084?
CVE-2015-8084 affects Huawei USG5500, USG2100, USG2200, and USG5100 unified security gateways with versions before V300R001C10SPC600.
What is DHCP Snooping as it relates to CVE-2015-8084?
DHCP Snooping is a network security feature that validates DHCP messages and is linked to the vulnerability in CVE-2015-8084.
Can CVE-2015-8084 be exploited remotely?
Yes, CVE-2015-8084 can be exploited remotely by attackers sending crafted DHCP packets.