CVE-2015-8086
MEDIUMHuawei AR <V200R007C00SPC100, Quidway S9300 <V200R009C00, S12700 <V...
Title source: llmDescription
Huawei AR routers with software before V200R007C00SPC100; Quidway S9300 routers with software before V200R009C00; S12700 routers with software before V200R008C00SPC500; S9300, Quidway S5300, and S5300 routers with software before V200R007C00; and S5700 routers with software before V200R007C00SPC500 makes it easier for remote authenticated administrators to obtain encryption keys and ciphertext passwords via vectors related to key storage.
References (2)
Core 2
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/76897
Vendor Advisory x_refsource_confirm
http://www.huawei.com/en/psirt/security-advisories/hw-455876
Scores
CVSS v3
4.9
EPSS
0.0003
EPSS Percentile
8.2%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
Details
CWE
CWE-326
Status
published
Products (22)
huawei/ar_firmware
v200r001
huawei/ar_firmware
v200r002
huawei/ar_firmware
v200r003
huawei/ar_firmware
v200r005c10
huawei/ar_firmware
v200r005c20
huawei/ar_firmware
v200r005c30
huawei/quidway_s5300_firmware
v200r001c00spc300
huawei/quidway_s9300_firmware
v200r001c00spc300
huawei/quidway_s9300_firmware
v200r002c00spc100
huawei/quidway_s9300_firmware
v200r003c00spc500
... and 12 more
Published
Oct 03, 2016
Tracked Since
Feb 18, 2026