Strix
26.1K

CVE-2014-9691

UnknownEPSS 0.59%

Last modified

CVE-2014-9691 is a vulnerability of currently unknown severity. Huawei Tecal RH1288 V2 V100R002C00SPC107 and earlier versions, Tecal RH2265 V2 V100R002C00, Tecal RH2285 V2 V100R002C00SPC115 and earlier versions, Tecal RH2265 V2 V100R002C00, Tecal RH2285H V2 V100R002C00SPC111 and earlier versions, Tecal RH2268 V2 V100R002C00, Tecal RH2288 V2 V100R002C00SPC117 and earlier versions, Tecal RH2288H V2 V100R002C00SPC115 and earlier versions, Tecal RH2485 V2 V100R002C00SPC502 and earlier versions, Tecal RH5885 V2 V100R001C02SPC109 and earlier versions, Tecal RH5885 V3 V100R003C01SPC102 and earlier versions, Tecal RH5885H V3 V100R003C00SPC102 and earlier versions, Tecal XH310 V2 V100R001C00SPC110 and earlier versions, Tecal XH311 V2 V100R001C00SPC110 and earlier versions, Tecal XH320 V2 V100R001C00SPC110 and earlier versions, Tecal XH621 V2 V100R001C00SPC106 and earlier versions, Tecal DH310 V2 V100R001C00SPC110 and earlier versions, Tecal DH320 V2 V100R001C00SPC106 and earlier versions, Tecal DH620 V2 V100R001C00SPC106 and earlier versions, Tecal DH621 V2 V100R001C00SPC107 and earlier versions, Tecal DH628 V2 V100R001C00SPC107 and earlier versions, Tecal BH620 V2 V100R002C00SPC107 and earlier versions, Tecal BH621 V2 V100R002C00SPC106 and earlier versions, Tecal BH622 V2 V100R002C00SPC110 and earlier versions, Tecal BH640 V2 V100R002C00SPC108 and earlier versions, Tecal CH121 V100R001C00SPC180 and earlier versions, Tecal CH140 V100R001C00SPC110 and earlier versions, Tecal CH220 V100R001C00SPC180 and earlier versions, Tecal CH221 V100R001C00SPC180 and earlier versions, Tecal CH222 V100R002C00SPC180 and earlier versions, Tecal CH240 V100R001C00SPC180 and earlier versions, Tecal CH242 V100R001C00SPC180 and earlier versions, Tecal CH242 V3 V100R001C00SPC110 and earlier versions could allow users who log in to the products to view the sessions IDs of all online users on the Online Users page of the web UI.. EPSS estimates a 0.59% chance of exploitation in the next 30 days.

Description

Huawei Tecal RH1288 V2 V100R002C00SPC107 and earlier versions, Tecal RH2265 V2 V100R002C00, Tecal RH2285 V2 V100R002C00SPC115 and earlier versions, Tecal RH2265 V2 V100R002C00, Tecal RH2285H V2 V100R002C00SPC111 and earlier versions, Tecal RH2268 V2 V100R002C00, Tecal RH2288 V2 V100R002C00SPC117 and earlier versions, Tecal RH2288H V2 V100R002C00SPC115 and earlier versions, Tecal RH2485 V2 V100R002C00SPC502 and earlier versions, Tecal RH5885 V2 V100R001C02SPC109 and earlier versions, Tecal RH5885 V3 V100R003C01SPC102 and earlier versions, Tecal RH5885H V3 V100R003C00SPC102 and earlier versions, Tecal XH310 V2 V100R001C00SPC110 and earlier versions, Tecal XH311 V2 V100R001C00SPC110 and earlier versions, Tecal XH320 V2 V100R001C00SPC110 and earlier versions, Tecal XH621 V2 V100R001C00SPC106 and earlier versions, Tecal DH310 V2 V100R001C00SPC110 and earlier versions, Tecal DH320 V2 V100R001C00SPC106 and earlier versions, Tecal DH620 V2 V100R001C00SPC106 and earlier versions, Tecal DH621 V2 V100R001C00SPC107 and earlier versions, Tecal DH628 V2 V100R001C00SPC107 and earlier versions, Tecal BH620 V2 V100R002C00SPC107 and earlier versions, Tecal BH621 V2 V100R002C00SPC106 and earlier versions, Tecal BH622 V2 V100R002C00SPC110 and earlier versions, Tecal BH640 V2 V100R002C00SPC108 and earlier versions, Tecal CH121 V100R001C00SPC180 and earlier versions, Tecal CH140 V100R001C00SPC110 and earlier versions, Tecal CH220 V100R001C00SPC180 and earlier versions, Tecal CH221 V100R001C00SPC180 and earlier versions, Tecal CH222 V100R002C00SPC180 and earlier versions, Tecal CH240 V100R001C00SPC180 and earlier versions, Tecal CH242 V100R001C00SPC180 and earlier versions, Tecal CH242 V3 V100R001C00SPC110 and earlier versions could allow users who log in to the products to view the sessions IDs of all online users on the Online Users page of the web UI.

Metrics

EPSS Probability
0.59%

43.7th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersions
HuaweiTecal Rh1288 V2 Firmware<= v100r002c00spc107
HuaweiTecal Rh2265 V2 Firmwarev100r002c00
HuaweiTecal Rh2285 V2 Firmware<= v100r002c00spc115
HuaweiTecal Rh2285h V2 Firmware<= v100r002c00spc111
HuaweiTecal Rh2268 V2 Firmwarev100r002c00
HuaweiTecal Rh2288 V2 Firmware<= v100r002c00spc117
HuaweiTecal Rh2288h V2 Firmware<= v100r002c00spc115
HuaweiTecal Rh2485 V2 Firmware<= v100r002c00spc502
HuaweiTecal Rh5885 V2 Firmware<= v100r001c02spc109
HuaweiTecal Rh5885 V3 Firmware<= v100r003c01spc102
HuaweiTecal Rh5885h V3 Firmware<= v100r003c00spc102
HuaweiTecal Xh310 V2 Firmware<= v100r001c00spc110
HuaweiTecal Xh311 V2 Firmware<= v100r001c00spc110
HuaweiTecal Xh320 V2 Firmware<= v100r001c00spc110
HuaweiTecal Xh621 V2 Firmware<= v100r001c00spc106
HuaweiTecal Dh310 V2 Firmware<= v100r001c00spc110
HuaweiTecal Dh320 V2 Firmware<= v100r001c00spc106
HuaweiTecal Dh620 V2 Firmware<= v100r001c00spc106
HuaweiTecal Dh621 V2 Firmware<= v100r001c00spc107
HuaweiTecal Dh628 V2 Firmware<= v100r001c00spc107
HuaweiTecal Bh620 V2 Firmware<= v100r002c00spc107
HuaweiTecal Bh621 V2 Firmware<= v100r002c00spc106
HuaweiTecal Bh622 V2 Firmware<= v100r002c00spc110
HuaweiTecal Bh640 V2 Firmware<= v100r002c00spc108
HuaweiTecal Ch121 Firmware<= v100r001c00spc180
HuaweiTecal Ch140 Firmware<= v100r001c00spc110
HuaweiTecal Ch220 Firmware<= v100r001c00spc180
HuaweiTecal Ch221 Firmware<= v100r001c00spc180
HuaweiTecal Ch222 Firmware<= v100r002c00spc180
HuaweiTecal Ch240 Firmware<= v100r001c00spc180
HuaweiTecal Ch242 Firmware<= v100r001c00spc180
HuaweiTecal Ch242 V3 Firmware<= v100r001c00spc110

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2014-9691?
Huawei Tecal RH1288 V2 V100R002C00SPC107 and earlier versions, Tecal RH2265 V2 V100R002C00, Tecal RH2285 V2 V100R002C00SPC115 and earlier versions, Tecal RH2265 V2 V100R002C00, Tecal RH2285H V2 V100R002C00SPC111 and earlier versions, Tecal RH2268 V2 V100R002C00, Tecal RH2288 V2 V100R002C00SPC117 and earlier versions, Tecal RH2288H V2 V100R002C00SPC115 and earlier versions, Tecal RH2485 V2 V100R002C00SPC502 and earlier versions, Tecal RH5885 V2 V100R001C02SPC109 and earlier versions, Tecal RH5885 V3 V100R003C01SPC102 and earlier versions, Tecal RH5885H V3 V100R003C00SPC102 and earlier versions, Tecal XH310 V2 V100R001C00SPC110 and earlier versions, Tecal XH311 V2 V100R001C00SPC110 and earlier versions, Tecal XH320 V2 V100R001C00SPC110 and earlier versions, Tecal XH621 V2 V100R001C00SPC106 and earlier versions, Tecal DH310 V2 V100R001C00SPC110 and earlier versions, Tecal DH320 V2 V100R001C00SPC106 and earlier versions, Tecal DH620 V2 V100R001C00SPC106 and earlier versions, Tecal DH621 V2 V100R001C00SPC107 and earlier versions, Tecal DH628 V2 V100R001C00SPC107 and earlier versions, Tecal BH620 V2 V100R002C00SPC107 and earlier versions, Tecal BH621 V2 V100R002C00SPC106 and earlier versions, Tecal BH622 V2 V100R002C00SPC110 and earlier versions, Tecal BH640 V2 V100R002C00SPC108 and earlier versions, Tecal CH121 V100R001C00SPC180 and earlier versions, Tecal CH140 V100R001C00SPC110 and earlier versions, Tecal CH220 V100R001C00SPC180 and earlier versions, Tecal CH221 V100R001C00SPC180 and earlier versions, Tecal CH222 V100R002C00SPC180 and earlier versions, Tecal CH240 V100R001C00SPC180 and earlier versions, Tecal CH242 V100R001C00SPC180 and earlier versions, Tecal CH242 V3 V100R001C00SPC110 and earlier versions could allow users who log in to the products to view the sessions IDs of all online users on the Online Users page of the web UI.
How severe is CVE-2014-9691?
Severity scoring for CVE-2014-9691 is pending analysis. The EPSS model estimates a 0.59% probability of exploitation in the next 30 days.
How do I fix CVE-2014-9691?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2014-9691?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST