Strix
26.1K

CVE-2015-7846

UnknownEPSS 0.26%

Last modified

CVE-2015-7846 is a vulnerability of currently unknown severity. Huawei S7700, S9700, S9300 before V200R07C00SPC500, and AR200, AR1200, AR2200, AR3200 before V200R005C20SPC200 allows attackers with physical access to the CF card to obtain sensitive information.. EPSS estimates a 0.26% chance of exploitation in the next 30 days.

Description

Huawei S7700, S9700, S9300 before V200R07C00SPC500, and AR200, AR1200, AR2200, AR3200 before V200R005C20SPC200 allows attackers with physical access to the CF card to obtain sensitive information.

Metrics

EPSS Probability
0.26%

17.3th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersions
HuaweiS9300 Firmwarev200r001c00spc300
HuaweiS9300 Firmwarev200r002c00spc100
HuaweiS9300 Firmwarev200r003c00spc500
HuaweiS9300 Firmwarev200r005c00spc300
HuaweiS9300 Firmwarev200r006c00spc300
HuaweiS9300 Firmwarev200r006c00spc500
HuaweiS9700 Firmwarev200r001c00spc300
HuaweiS9700 Firmwarev200r002c00spc100
HuaweiS9700 Firmwarev200r003c00spc500
HuaweiS9700 Firmwarev200r005c00spc300
HuaweiS9700 Firmwarev200r006c00spc300
HuaweiS9700 Firmwarev200r006c00spc500
HuaweiS7700 Firmwarev200r001c00spc300
HuaweiS7700 Firmwarev200r002c00spc100
HuaweiS7700 Firmwarev200r003c00spc500
HuaweiS7700 Firmwarev200r005c00spc300
HuaweiS7700 Firmwarev200r006c00spc300
HuaweiS7700 Firmwarev200r006c00spc500
HuaweiAr200 Firmwarev200r003c00spc100
HuaweiAr200 Firmwarev200r003c00spc200
HuaweiAr200 Firmwarev200r003c01spc100
HuaweiAr200 Firmwarev200r003c01spc200
HuaweiAr200 Firmwarev200r003c01spc300
HuaweiAr200 Firmwarev200r003c01spc500
HuaweiAr200 Firmwarev200r003c01spc600
HuaweiAr200 Firmwarev200r003c01spc800
HuaweiAr200 Firmwarev200r003c01spc900
HuaweiAr1200 Firmwarev200r003c00spc100
HuaweiAr1200 Firmwarev200r003c00spc200
HuaweiAr1200 Firmwarev200r003c01spc100
HuaweiAr1200 Firmwarev200r003c01spc200
HuaweiAr1200 Firmwarev200r003c01spc300
HuaweiAr1200 Firmwarev200r003c01spc500
HuaweiAr1200 Firmwarev200r003c01spc600
HuaweiAr1200 Firmwarev200r003c01spc800
HuaweiAr1200 Firmwarev200r003c01spc900
HuaweiAr2200 Firmwarev200r003c00spc100
HuaweiAr2200 Firmwarev200r003c00spc200
HuaweiAr2200 Firmwarev200r003c01spc100
HuaweiAr2200 Firmwarev200r003c01spc200
HuaweiAr2200 Firmwarev200r003c01spc300
HuaweiAr2200 Firmwarev200r003c01spc500
HuaweiAr2200 Firmwarev200r003c01spc600
HuaweiAr2200 Firmwarev200r003c01spc800
HuaweiAr2200 Firmwarev200r003c01spc900
HuaweiAr3200 Firmwarev200r003c00spc100
HuaweiAr3200 Firmwarev200r003c00spc200
HuaweiAr3200 Firmwarev200r003c01spc100
HuaweiAr3200 Firmwarev200r003c01spc200
HuaweiAr3200 Firmwarev200r003c01spc300

Showing 50 of 54 affected configurations. See NVD for the full list.

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2015-7846?
Huawei S7700, S9700, S9300 before V200R07C00SPC500, and AR200, AR1200, AR2200, AR3200 before V200R005C20SPC200 allows attackers with physical access to the CF card to obtain sensitive information.
How severe is CVE-2015-7846?
Severity scoring for CVE-2015-7846 is pending analysis. The EPSS model estimates a 0.26% probability of exploitation in the next 30 days.
How do I fix CVE-2015-7846?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2015-7846?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST