Remote IP Address Modification Vulnerability in Huawei VCN500 Product
CVE-2015-8333

7.1HIGH

Key Information:

Vendor: Huawei
Status: Vcn500
Vendor: CVE Published:; 11 January 2016

Summary

The Operation and Maintenance Unit (OMU) in the Huawei VCN500 product, prior to version V100R002C00SPC200, is susceptible to a remote code execution vulnerability. This allows authenticated users to manipulate the media server's configuration by sending specially crafted packets, which may lead to unauthorized IP address changes and potential disruption of services.

References

http://www1.huawei.com/en/security/psirt/security-bulleti...

x_refsource_CONFIRM

CVSS V3.1

Score:

7.1

Severity:

HIGH

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jan 11, 2016
Vulnerability Reserved
Nov 24, 2015