Strix
26.1K

CVE-2015-8265

UnknownEPSS 1.91%

Last modified

CVE-2015-8265 is a vulnerability of currently unknown severity. Huawei Mobile WiFi E5151 routers with software before E5151s-2TCPU-V200R001B146D27SP00C00 and E5186 routers with software before V200R001B310D01SP00C00 allow DNS query packets using the static source port, which makes it easier for remote attackers to spoof responses via unspecified vectors.. EPSS estimates a 1.91% chance of exploitation in the next 30 days.

Description

Huawei Mobile WiFi E5151 routers with software before E5151s-2TCPU-V200R001B146D27SP00C00 and E5186 routers with software before V200R001B310D01SP00C00 allow DNS query packets using the static source port, which makes it easier for remote attackers to spoof responses via unspecified vectors.

Metrics

EPSS Probability
1.91%

77.1th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersions
HuaweiE5151 Firmware<= e5151s-2tcpu-v200r001b141d13sp00c1080
HuaweiE5186 Firmware<= v200r001b306d01c00

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2015-8265?
Huawei Mobile WiFi E5151 routers with software before E5151s-2TCPU-V200R001B146D27SP00C00 and E5186 routers with software before V200R001B310D01SP00C00 allow DNS query packets using the static source port, which makes it easier for remote attackers to spoof responses via unspecified vectors.
How severe is CVE-2015-8265?
Severity scoring for CVE-2015-8265 is pending analysis. The EPSS model estimates a 1.91% probability of exploitation in the next 30 days.
How do I fix CVE-2015-8265?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2015-8265?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST