CVE-2015-8676
HIGHHuawei S2350EI/S5300EI/S5300SI/S5310HI/S6300EI/S5300LI/S9300/S7700/S9700 DoS via ICMPv6 Flood
Title source: llmDescription
Memory leak in Huawei S5300EI, S5300SI, S5310HI, S6300EI/ S2350EI, and S5300LI Campus series switches with software V200R001C00 before V200R001SPH018, V200R002C00 before V200R003SPH011, and V200R003C00 before V200R003SPH011; S9300, S7700, and S9700 Campus series switches with software V200R001C00 before V200R001SPH023, V200R002C00 before V200R003SPH011, and V200R003C00 before V200R003SPH011; and S2300 and S3300 Campus series switches with software V100R006C05 before V100R006SPH022 allows remote attackers to cause a denial of service (memory consumption and reboot) via a large number of ICMPv6 packets.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_confirm
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160113-02-switch-en
Scores
CVSS v3
7.5
EPSS
0.0028
EPSS Percentile
51.6%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Details
CWE
CWE-119
CWE-399
Status
published
Products (14)
huawei/s2300_firmware
v100r006c05 - v100r006sph022
huawei/s2350ei_firmware
v200r001c00 - v200r001sph018
huawei/s3300_firmware
v100r006c05 - v100r006sph022
huawei/s5300ei_firmware
v200r001c00 - v200r001sph018
huawei/s5300li_firmware
v200r001c00 - v200r001sph018
huawei/s5300si_firmware
v200r001c00 - v200r001sph018
huawei/s5310hi_firmware
v200r001c00 - v200r001sph018
huawei/s6300ei_firmware
v200r001c00 - v200r001sph018
huawei/s7700_firmware
v200r003c00
huawei/s7700_firmware
v200r001c00 - v200r001sph023
... and 4 more
Published
Apr 14, 2016
Tracked Since
Feb 18, 2026