What is CVE-2015-8675?

CVE-2015-8675 is a medium-severity vulnerability in Huawei S5300, classified under CWE-255. CVSS score: 6.2/10. Published 2016-01-15.

How severe is CVE-2015-8675?

Medium severity. CVSS v3 base score is 6.2 out of 10.

Vulnerability in Huawei S5300

CVE-2015-8675

Huawei S5300 Campus Series switches with software before V200R005SPH008 do not mask the password when uploading files, which allows physically proximate attackers to obtain sensitive password information by reading the display.

EPSS: 0.000 (9.0th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 6.2 (Medium). Vector: CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N.

Affected products

Huawei S5300
Huawei S5300_firmware — versions v200r005c02
N/a — versions n/a

Weakness classification (CWE)

CWE-255

References

cve@mitre.org (x_refsource_CONFIRM, Vendor Advisory)

Frequently asked questions

What is CVE-2015-8675?: CVE-2015-8675 is a medium-severity vulnerability in Huawei S5300, classified under CWE-255. CVSS score: 6.2/10. Published 2016-01-15.
How severe is CVE-2015-8675?: Medium severity. CVSS v3 base score is 6.2 out of 10.