CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2015-8331

The Operation and Maintenance Unit (OMU) in Huawei VCN500 with software before V100R002C00SPC200 does not properly invalidate the session ID when an "abnormal exit" occurs, which allows remote attackers to conduct replay attacks via the session ID.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 33.9%

CVSS Severity

CVSS v3 Score 7.4

CVSS v2 Score 5.8

References

http://www1.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-463067.htm
http://www1.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-463067.htm

Products affected by CVE-2015-8331

Huawei » Vcn500 » Version: v100r002c00spc200b010

cpe:2.3:a:huawei:vcn500:v100r002c00spc200b010
Huawei » Vcn500 » Version: N/A

cpe:2.3:h:huawei:vcn500:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2015-8331

Products

Pricing

Contact Us