CVE-2014-8570
MEDIUMHuawei VRP MPLS LSP Ping Unintended Interface Exposure of Device IP Addresses
Title source: llmDescription
Huawei S9300, S9303, S9306, S9312 with software V100R002; S7700, S7703, S7706, S7712 with software V100R003, V100R006, V200R001, V200R002, V200R003, V200R005; S9300E, S9303E, S9306E, S9312E with software V200R001; S9700, S9703, S9706, S9712 with software V200R002, V200R003, V200R005; S12708, S12712 with software V200R005; 5700HI, 5300HI with software V100R006, V200R001, V200R002, V200R003, V200R005; 5710EI, 5310EI with software V200R002, V200R003, V200R005; 5710HI, 5310HI with software V200R003, V200R005; 6700EI, 6300EI with software V200R005 could cause a leak of IP addresses of devices, related to unintended interface support for VRP MPLS LSP Ping.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_confirm
http://www.huawei.com/en/psirt/security-advisories/hw-372145
Scores
CVSS v3
5.3
EPSS
0.0011
EPSS Percentile
29.1%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Details
CWE
CWE-200
Status
published
Products (50)
huawei/5300hi_firmware
v100r006
huawei/5300hi_firmware
v200r001
huawei/5300hi_firmware
v200r002
huawei/5300hi_firmware
v200r003
huawei/5300hi_firmware
v200r005
huawei/5310ei_firmware
v200r002
huawei/5310ei_firmware
v200r003
huawei/5310ei_firmware
v200r005
huawei/5310hi_firmware
v200r003
huawei/5310hi_firmware
v200r005
... and 40 more
Published
Apr 02, 2017
Tracked Since
Feb 18, 2026