Remote IP Address Modification Vulnerability in Huawei VCN500 Product
CVE-2015-8333

7.1HIGH

Key Information:

Vendor
Huawei
Status
Vendor
CVE Published:
11 January 2016

Summary

The Operation and Maintenance Unit (OMU) in the Huawei VCN500 product, prior to version V100R002C00SPC200, is susceptible to a remote code execution vulnerability. This allows authenticated users to manipulate the media server's configuration by sending specially crafted packets, which may lead to unauthorized IP address changes and potential disruption of services.

References

CVSS V3.1

Score:
7.1
Severity:
HIGH
Confidentiality:
None
Integrity:
Low
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.