What is CVE-2015-3913?

CVE-2015-3913 is a high-severity vulnerability in Huawei S12700, classified under Improper Input Validation. CVSS score: 7.5/10. Published 2017-06-08.

How severe is CVE-2015-3913?

High severity. CVSS v3 base score is 7.5 out of 10.

Improper input validation in Huawei S12700

CVE-2015-3913

The IP stack in multiple Huawei Campus series switch models allows remote attackers to cause a denial of service (reboot) via a crafted ICMP request message.

Vulnerability class: Drupalgeddon 2 (CVE-2018-7600)

EPSS: 0.003 (51.8th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.5 (High). Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H.

Affected products

Huawei S12700
Huawei S12700_firmware — versions v200r005c00spc300, v200r006c00spc500, v200r007c00spc500
Huawei S2300
Huawei S2300_firmware — versions v100r006c00, v100r006c03, v100r006c05
Huawei S2350ei
Huawei S2350ei_firmware — versions v200r001c00spc300, v200r002c00spc300, v200r003c00spc300
Huawei S2700
Huawei S2700_firmware — versions v100r006c00, v100r006c03, v100r006c05
Huawei S2750ei
Huawei S2750ei_firmware — versions v200r001c00spc300, v200r002c00spc300, v200r003c00spc300

Weakness classification (CWE)

CWE-20 — Improper Input Validation

References

cve@mitre.org (x_refsource_CONFIRM, Vendor Advisory)

Frequently asked questions

What is CVE-2015-3913?: CVE-2015-3913 is a high-severity vulnerability in Huawei S12700, classified under Improper Input Validation. CVSS score: 7.5/10. Published 2017-06-08.
How severe is CVE-2015-3913?: High severity. CVSS v3 base score is 7.5 out of 10.