CVE-2015-2800

high

Published 2017-06-08 · Modified 2026-05-13

CVSS v3

7.5

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

VIR risk

7.5

Description

The user authentication module in Huawei Campus switches S5700, S5300, S6300, and S6700 with software before V200R001SPH012 and S7700, S9300, and S9700 with software before V200R001SPH015 allows remote attackers to cause a denial of service (device restart) via vectors involving authentication, which trigger an array access violation.

Predictions

Exploit likelihood

83%

Patch ETA

—

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

No vendor mitigations ingested yet for this CVE. The mitigation-content worker queues fetches as references arrive — check back in a few minutes, or see the references list below.

References

http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-418554.htm
http://www.securityfocus.com/bid/73355
http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-418554.htm
http://www.securityfocus.com/bid/73355

CWEs

CWE-287

💬 Discuss CVE-2015-2800 on VIR Community →

Community-verified mitigations for this CVE will appear above when contributors publish them.

Verify integrity in audit chain (admin only). AS-IS.