CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2012-6570

The HTTP module in the (1) Branch Intelligent Management System (BIMS) and (2) web management components on Huawei AR routers and S2000, S3000, S3500, S3900, S5100, S5600, S7800, and S8500 switches does not check whether HTTP data is longer than the value of the Content-Length field, which allows remote HTTP servers to conduct heap-based buffer overflow attacks and execute arbitrary code via a crafted response.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.009

EPSS Ranking 73.7%

CVSS Severity

CVSS v2 Score 10.0

References

Products affected by CVE-2012-6570

Huawei » Ar 18-1x » Version: r0130

cpe:2.3:h:huawei:ar_18-1x:r0130
Huawei » Ar 18-2x » Version: r1712

cpe:2.3:h:huawei:ar_18-2x:r1712
Huawei » Ar 18-3x » Version: r0118

cpe:2.3:h:huawei:ar_18-3x:r0118
Huawei » Ar 19/29/49 » Version: r2207

cpe:2.3:h:huawei:ar_19/29/49:r2207
Huawei » Ar 28/46 » Version: r0311

cpe:2.3:h:huawei:ar_28/46:r0311
Huawei » S2000 » Version: r6305

cpe:2.3:h:huawei:s2000:r6305
Huawei » S2300 » Version: r6305

cpe:2.3:h:huawei:s2300:r6305
Huawei » S2700 » Version: r6305

cpe:2.3:h:huawei:s2700:r6305
Huawei » S3000 » Version: r6305

cpe:2.3:h:huawei:s3000:r6305
Huawei » S3300 » Version: r6305

cpe:2.3:h:huawei:s3300:r6305
Huawei » S3300hi » Version: r6305

cpe:2.3:h:huawei:s3300hi:r6305
Huawei » S3500 » Version: r6305

cpe:2.3:h:huawei:s3500:r6305
Huawei » S3700 » Version: r6305

cpe:2.3:h:huawei:s3700:r6305
Huawei » S3900 » Version: r6305

cpe:2.3:h:huawei:s3900:r6305
Huawei » S5100 » Version: r6305

cpe:2.3:h:huawei:s5100:r6305
Huawei » S5600 » Version: r6305

cpe:2.3:h:huawei:s5600:r6305
Huawei » S7800 » Version: r6305

cpe:2.3:h:huawei:s7800:r6305
Huawei » S8500 » Version: r1631

cpe:2.3:h:huawei:s8500:r1631
Huawei » S8500 » Version: r1632

cpe:2.3:h:huawei:s8500:r1632

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2012-6570

Products

Pricing

Contact Us