CVE-2016-6159
HIGHHuawei WS331a Router Firmware < ws331a-10_v100r001c02b017sp01 - Unauthenticated Authentication Bypass via LAN Interface
Title source: llmDescription
The management interface of Huawei WS331a routers with software before WS331a-10 V100R001C01B112 allows remote attackers to bypass authentication and obtain administrative access by sending "special packages" to the LAN interface.
References (1)
Core 1
Core References
VDB Entry x_refsource_confirm
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160907-01-ws331a-en
Scores
CVSS v3
7.5
EPSS
0.0080
EPSS Percentile
74.4%
Attack Vector
ADJACENT_NETWORK
CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-287
Status
published
Products (1)
huawei/ws331a_router_firmware
< ws331a-10_v100r001c02b017sp01
Published
Sep 21, 2016
Tracked Since
Feb 18, 2026