Sign-up

ID

VAR-201404-0687


TITLE

Huawei Quidway S-Series Switches Denial of Service Vulnerability

Trust: 1.5

sources: CNVD: CNVD-2014-02944 // BID: 67140 // CNNVD: CNNVD-201405-114

DESCRIPTION

Huawei Quidway S-Series Switches are S-series Ethernet switches from China's Huawei. A denial of service vulnerability exists in Huawei Quidway S-Series Switches. An attacker could exploit this vulnerability to cause a large amount of resources to be consumed or the affected device to crash, and deny service to legitimate users

Trust: 1.35

sources: CNVD: CNVD-2014-02944 // CNNVD: CNNVD-201405-114 // BID: 67140

IOT TAXONOMY

category:['Network device']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2014-02944

AFFECTED PRODUCTS

vendor:huaweimodel:quidway s-series switchesscope: - version: -

Trust: 0.6

vendor:huaweimodel:quidway s9700 v200r003c00spc500scope:eqversion:0

Trust: 0.3

vendor:huaweimodel:quidway s9300 v200r003c00spc500scope:eqversion:0

Trust: 0.3

vendor:huaweimodel:quidway s7700 v200r003c00spc500scope:eqversion:0

Trust: 0.3

vendor:huaweimodel:quidway s6700 v200r003c00spc300scope:eqversion:0

Trust: 0.3

vendor:huaweimodel:quidway s6300 v200r003c00spc300scope:eqversion:0

Trust: 0.3

vendor:huaweimodel:quidway s5700 v200r003c00spc300scope:eqversion:0

Trust: 0.3

vendor:huaweimodel:quidway s5300 v200r003c00spc300scope:eqversion:0

Trust: 0.3

vendor:huaweimodel:quidway s9700 v200r003sph005scope:neversion:0

Trust: 0.3

vendor:huaweimodel:quidway s9300 v200r003sph005scope:neversion:0

Trust: 0.3

vendor:huaweimodel:quidway s7700 v200r003sph005scope:neversion:0

Trust: 0.3

vendor:huaweimodel:quidway s6700 v200r003sph005scope:neversion:0

Trust: 0.3

vendor:huaweimodel:quidway s6300 v200r003sph005scope:neversion:0

Trust: 0.3

vendor:huaweimodel:quidway s5700 v200r003sph005scope:neversion:0

Trust: 0.3

vendor:huaweimodel:quidway s5300 v200r003sph005scope:neversion:0

Trust: 0.3

sources: CNVD: CNVD-2014-02944 // BID: 67140

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD: CNVD-2014-02944
value: MEDIUM

Trust: 0.6

CNVD: CNVD-2014-02944
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

sources: CNVD: CNVD-2014-02944

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201405-114

TYPE

Input Validation Error

Trust: 0.3

sources: BID: 67140

PATCH

title:Huawei Quidway S-Series Switches patch for denial of service vulnerabilityurl:https://www.cnvd.org.cn/patchinfo/show/45505

Trust: 0.6

sources: CNVD: CNVD-2014-02944

EXTERNAL IDS

db:BIDid:67140

Trust: 1.5

db:CNVDid:CNVD-2014-02944

Trust: 0.6

db:CNNVDid:CNNVD-201405-114

Trust: 0.6

sources: CNVD: CNVD-2014-02944 // BID: 67140 // CNNVD: CNNVD-201405-114

REFERENCES

url:http://www.securityfocus.com/bid/67140

Trust: 1.2

url:http://www.huawei.com

Trust: 0.3

url:http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-333184.htm

Trust: 0.3

sources: CNVD: CNVD-2014-02944 // BID: 67140 // CNNVD: CNNVD-201405-114

CREDITS

The vendor reported this issue

Trust: 0.3

sources: BID: 67140

SOURCES

db:CNVDid:CNVD-2014-02944
db:BIDid:67140
db:CNNVDid:CNNVD-201405-114

LAST UPDATE DATE

2022-05-17T02:07:13.182000+00:00


SOURCES UPDATE DATE

db:CNVDid:CNVD-2014-02944date:2014-05-12T00:00:00
db:BIDid:67140date:2014-04-23T00:00:00
db:CNNVDid:CNNVD-201405-114date:2014-05-08T00:00:00

SOURCES RELEASE DATE

db:CNVDid:CNVD-2014-02944date:2014-05-12T00:00:00
db:BIDid:67140date:2014-04-23T00:00:00
db:CNNVDid:CNNVD-201405-114date:2014-04-23T00:00:00