CVE-2015-6586
HIGHHuawei WLAN ACU2, AC6005, AC6605 < V200R006C00SPC100 - Unauthorized Sensitive Information Exposure via mDNS
Title source: llmDescription
The mDNS module in Huawei WLAN AC6005, AC6605, and ACU2 devices with software before V200R006C00SPC100 allows remote attackers to obtain sensitive information by leveraging failure to restrict processing of mDNS unicast queries to the link local network.
References (2)
Core 2
Core References
Mitigation, Vendor Advisory x_refsource_confirm
http://www1.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-453516.htm
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/76684
Scores
CVSS v3
7.5
EPSS
0.0014
EPSS Percentile
33.4%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Details
CWE
CWE-200
Status
published
Products (3)
huawei/wlan_ac6005_firmware
< v200r005c00
huawei/wlan_ac6605_firmware
< v200r005c00
huawei/wlan_acu2_firmware
< v200r005c00
Published
May 23, 2017
Tracked Since
Feb 18, 2026