← Back

CVE-2014-5394

nvd nist
Published: Jan 8, 2018Modified: Nov 21, 2024

JSON object

Loading...
5.9
Vector
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
Exploitability: 2.2 / Impact: 3.6
Source: NVD

Description

Multiple Huawei Campus switches allow remote attackers to enumerate usernames via vectors involving use of SSH by the maintenance terminal.

Affected (28)

Huawei
12 products
S9300 Firmware
S9300e Firmware
S7700 Firmware
S9700 Firmware
S5700 Firmware
S6700 Firmware
S5300 Firmware
S6300 Firmware
S2300 Firmware
S2700 Firmware
S3300 Firmware
S3700 Firmware
Configuration A
3 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Huawei
S9300 Firmware
Version v200r001c00spc300
S9300 Firmware
Version v200r002c00spc300
S9300 Firmware
Version v200r003c00spc500
Running on/withPlatform Versions
Huawei
S9300
All versions
Configuration B
3 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Huawei
S9300e Firmware
Version v200r001c00spc300
S9300e Firmware
Version v200r002c00spc300
S9300e Firmware
Version v200r003c00spc500
Running on/withPlatform Versions
Huawei
S9300e
All versions
Configuration C
3 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Huawei
S7700 Firmware
Version v200r001c00spc300
S7700 Firmware
Version v200r002c00spc300
S7700 Firmware
Version v200r003c00spc500
Running on/withPlatform Versions
Huawei
S7700
All versions
Configuration D
3 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Huawei
S9700 Firmware
Version v200r001c00spc300
S9700 Firmware
Version v200r002c00spc300
S9700 Firmware
Version v200r003c00spc500
Running on/withPlatform Versions
Huawei
S9700
All versions
Configuration E
3 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Huawei
S5700 Firmware
Version v200r001c00spc300
S5700 Firmware
Version v200r002c00spc300
S5700 Firmware
Version v200r003c00spc300
Running on/withPlatform Versions
Huawei
S5700
All versions
Configuration F
3 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Huawei
S6700 Firmware
Version v200r001c00spc300
S6700 Firmware
Version v200r002c00spc300
S6700 Firmware
Version v200r003c00spc300
Running on/withPlatform Versions
Huawei
S6700
All versions
Configuration G
3 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Huawei
S5300 Firmware
Version v200r001c00spc300
S5300 Firmware
Version v200r002c00spc300
S5300 Firmware
Version v200r003c00spc300
Running on/withPlatform Versions
Huawei
S5300
All versions
Configuration H
3 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Huawei
S6300 Firmware
Version v200r001c00spc300
S6300 Firmware
Version v200r002c00spc300
S6300 Firmware
Version v200r003c00spc300
Running on/withPlatform Versions
Huawei
S6300
All versions
Configuration I
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
S2300 Firmware
Version v100r006c05
Running on/withPlatform Versions
Huawei
S2300
All versions
Configuration J
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
S2700 Firmware
Version v100r006c05
Running on/withPlatform Versions
Huawei
S2700
All versions
Configuration K
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
S3300 Firmware
Version v100r006c05
Running on/withPlatform Versions
Huawei
S3300
All versions
Configuration L
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
S3700 Firmware
Version v100r006c05
Running on/withPlatform Versions
Huawei
S3700
All versions

Related CWEs

CWE-200
Exposure of Sensitive Information to an Unauthorized Actor
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

References (6)

Source: cve@mitre.org
Vendor Advisory
Source: cve@mitre.org
Third Party AdvisoryVDB Entry
Source: cve@mitre.org
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry

Timeline

No history available yet.