CVE-2014-8572
Severity CVSS v4.0:
Pending analysis
Type:
CWE-20
Input Validation
Publication date:
02/04/2017
Last modified:
20/04/2025
Description
Huawei AC6605 with software V200R001C00; AC6605 with software V200R002C00; ACU with software V200R001C00; ACU with software V200R002C00; S2300, S3300, S2700, S3700 with software V100R006C05 and earlier versions; S5300, S5700, S6300, S6700 with software V100R006, V200R001, V200R002, V200R003, V200R005C00SPC300 and earlier versions; S7700, S9300, S9300E, S9700 with software V100R006, V200R001, V200R002, V200R003, V200R005C00SPC300 and earlier versions could allow remote attackers to send a special SSH packet to the VRP device to cause a denial of service.
Impact
Base Score 3.x
7.50
Severity 3.x
HIGH
Base Score 2.0
7.80
Severity 2.0
HIGH
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:huawei:ac6605_firmware:ac6605_v200r001c00:*:*:*:*:*:*:* | ||
| cpe:2.3:o:huawei:ac6605_firmware:ac6605_v200r002c00:*:*:*:*:*:*:* | ||
| cpe:2.3:h:huawei:ac6605:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:huawei:acu_firmware:acu_v200r001c00:*:*:*:*:*:*:* | ||
| cpe:2.3:o:huawei:acu_firmware:acu_v200r002c00:*:*:*:*:*:*:* | ||
| cpe:2.3:h:huawei:acu:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:huawei:s_series_firmware:v100r006c05:*:*:*:*:*:*:* | ||
| cpe:2.3:h:huawei:s2300:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:huawei:s2700:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:huawei:s3300:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:huawei:s3700:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:huawei:s5300_firmware:*:*:*:*:*:*:*:* | v200r005c00spc300 (including) | |
| cpe:2.3:o:huawei:s5300_firmware:v100r006:*:*:*:*:*:*:* | ||
| cpe:2.3:o:huawei:s5300_firmware:v200r001:*:*:*:*:*:*:* | ||
| cpe:2.3:o:huawei:s5300_firmware:v200r002:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page