CVE-2015-7846

CWE-200Information Exposure3 documents3 sources
Severity
4.6MEDIUM
EPSS
0.0%
top 90.05%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
7
Huawei Ar1200 FirmwareHuawei Ar200 FirmwareHuawei Ar2200 Firmware+4 more
Timeline
PublishedSep 25
Latest updateMay 17

Description

Huawei S7700, S9700, S9300 before V200R07C00SPC500, and AR200, AR1200, AR2200, AR3200 before V200R005C20SPC200 allows attackers with physical access to the CF card to obtain sensitive information.

CVSS vector

CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 0.9 | Impact: 3.6

Affected Packages7 packages

NVDhuawei/ar200_firmware9 versions+8
NVDhuawei/s7700_firmware6 versions+5
NVDhuawei/s9300_firmware6 versions+5
NVDhuawei/s9700_firmware6 versions+5
NVDhuawei/ar1200_firmware9 versions+8

🔴Vulnerability Details

2
GHSA
GHSA-43f6-crvm-c3cv: Huawei S7700, S9700, S9300 before V200R07C00SPC500, and AR200, AR1200, AR2200, AR3200 before V200R005C20SPC200 allows attackers with physical access t2022-05-17
CVEList
CVE-2015-7846: Huawei S7700, S9700, S9300 before V200R07C00SPC500, and AR200, AR1200, AR2200, AR3200 before V200R005C20SPC200 allows attackers with physical access t2017-09-25
CVE-2015-7846 (MEDIUM CVSS 4.6) | Huawei S7700 | cvebase.io