Vulnerability in Huawei OceanStor UDS Devices Allowing Remote Exploitation
CVE-2015-2254

9.1CRITICAL

Key Information:

Vendor: Huawei
Status: Oceanstor Uds Firmware
Vendor: CVE Published:; 13 March 2019

Summary

The vulnerability in Huawei OceanStor UDS devices may allow remote attackers to interfere with patch loading operations. By capturing and modifying loading information, attackers can potentially delete critical directory files and disrupt normal system functions, leading to severe operational issues. It is crucial for users to ensure their devices are updated to prevent exploitation.

References

https://www.huawei.com/en/psirt/security-advisories/hw-41...

x_refsource_CONFIRM

CVSS V3.1

Score:

9.1

Severity:

CRITICAL

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Mar 13, 2019
Vulnerability Reserved
Mar 9, 2015