Description
HPE Networking Products, originally branded as Comware 5, Comware 7, H3C, or HP, allow remote attackers to bypass intended access restrictions or cause a denial of service via "Virtual routing and forwarding (VRF) hopping."
References (2)
Core 2
Core References
Patch, Vendor Advisory x_refsource_confirm
https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04779492
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/79869
Scores
CVSS v3
6.5
EPSS
0.0070
EPSS Percentile
72.2%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L
Details
CWE
CWE-264
Status
published
Products (50)
hp/jc072b_hp_12500_main_processing_unit
hp/jc085a_hp_a12518_switch_chassis
hp/jc086a_hp_a12508_switch_chassis
hp/jc124a_hp_a9508_switch_chassis
hp/jc124b_hp_9505_switch_chassis
hp/jc125a_hp_a9512_switch_chassis
hp/jc125b_hp_9512_switch_chassis
hp/jc474a_hp_a9508-v_switch_chassis
hp/jc474b_hp_9508-v_switch_chassis
hp/jc611a_hp_10508-v_switch_chassis
... and 40 more
Published
Jan 05, 2016
Tracked Since
Feb 18, 2026