CVE-2015-8331
Description
The Operation and Maintenance Unit (OMU) in Huawei VCN500 with software before V100R002C00SPC200 does not properly invalidate the session ID when an abnormal exit occurs, which allows remote attackers to conduct replay attacks via the session ID.
Risk Information
Base Score
7.4
MODERATE
Vector
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
EPSS Score
Exploitation Probability
0.133
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Vulnerabilities CVE-2015-8331 ,CVE-2015-8333 ,CVE-2015-8335 are affected in vcn500 v100r002c00spc200b010 | NCM |
| Improper Input Validation Vulnerability (CVE-2015-8331) | NCM |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234