Vulnerability Details CVE-2015-8265
Huawei Mobile WiFi E5151 routers with software before E5151s-2TCPU-V200R001B146D27SP00C00 and E5186 routers with software before V200R001B310D01SP00C00 allow DNS query packets using the static source port, which makes it easier for remote attackers to spoof responses via unspecified vectors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 67.6%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
References
- http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160129-01-dns-en
- http://www.securityfocus.com/bid/82246
- https://www.kb.cert.org/vuls/id/972224
- http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160129-01-dns-en
- http://www.securityfocus.com/bid/82246
- https://www.kb.cert.org/vuls/id/972224
Products affected by CVE-2015-8265
-
cpe:2.3:h:huawei:e5151:-
-
cpe:2.3:h:huawei:e5186:-
-
cpe:2.3:o:huawei:e5151_firmware:e5151s-2tcpu-v200r001b141d13sp00c1080
-
cpe:2.3:o:huawei:e5186_firmware:v200r001b306d01c00