CVE-2015-8675

Published: Jan 15, 2016Modified: May 6, 2026

6.2

Vector

CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Exploitability: 2.5 / Impact: 3.6

Source: NVD

Description

Huawei S5300 Campus Series switches with software before V200R005SPH008 do not mask the password when uploading files, which allows physically proximate attackers to obtain sensitive password information by reading the display.

Affected (1)

Products: Huawei: S5300 Firmware

Huawei

1 product

S5300 Firmware

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Huawei S5300 Firmware	Version v200r005c02

Running on/with	Platform Versions
Huawei S5300	All versions

Related CWEs

CWE-255

References (2)

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160112-01-switch-en

Source: cve@mitre.org

Vendor Advisory

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160112-01-switch-en

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.