CVE-2015-6586
Last modified
CVE-2015-6586 is a vulnerability of currently unknown severity. The mDNS module in Huawei WLAN AC6005, AC6605, and ACU2 devices with software before V200R006C00SPC100 allows remote attackers to obtain sensitive information by leveraging failure to restrict processing of mDNS unicast queries to the link local network.. EPSS estimates a 1.31% chance of exploitation in the next 30 days.
Description
The mDNS module in Huawei WLAN AC6005, AC6605, and ACU2 devices with software before V200R006C00SPC100 allows remote attackers to obtain sensitive information by leveraging failure to restrict processing of mDNS unicast queries to the link local network.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Huawei | Wlan Acu2 Firmware | <= v200r005c00 |
| Huawei | Wlan Acu2 Firmware | <= v200r005c10 |
| Huawei | Wlan Acu2 Firmware | <= v200r006c00 |
| Huawei | Wlan Ac6005 Firmware | <= v200r005c00 |
| Huawei | Wlan Ac6005 Firmware | <= v200r005c10 |
| Huawei | Wlan Ac6005 Firmware | <= v200r006c00 |
| Huawei | Wlan Ac6605 Firmware | <= v200r005c00 |
| Huawei | Wlan Ac6605 Firmware | <= v200r005c10 |
| Huawei | Wlan Ac6605 Firmware | <= v200r006c00 |
References
- http://www.securityfocus.com/bid/76684Third Party Advisory, VDB Entry
- http://www1.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-453516.htmMitigation, Vendor Advisory
- http://www.securityfocus.com/bid/76684Third Party Advisory, VDB Entry
- http://www1.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-453516.htmMitigation, Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2015-6586?
How severe is CVE-2015-6586?
How do I fix CVE-2015-6586?
Are you affected by CVE-2015-6586?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST