CVE-2015-8677
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2015-8677
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Memory leak in Huawei S5300EI, S5300SI, S5310HI, and S6300EI Campus series switches with software V200R003C00 before V200R003SPH011 and V200R005C00 before V200R005SPH008; S2350EI and S5300LI Campus series switches with software V200R003C00 before V200R003SPH011, V200R005C00 before V200R005SPH008, and V200R006C00 before V200R006SPH002; S9300, S7700, and S9700 Campus series switches with software V200R003C00 before V200R003SPH011, V200R005C00 before V200R005SPH009, and V200R006C00 before V200R006SPH003; S5720HI and S5720EI Campus series switches with software V200R006C00 before V200R006SPH002; and S2300 and S3300 Campus series switches with software V100R006C05 before V100R006SPH022 allows remote authenticated users to cause a denial of service (memory consumption and device restart) by logging in and out of the (1) HTTPS or (2) SFTP server, related to SSL session information.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
多款Huawei产品内存泄露漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Huawei S5300EI等都是中国华为(Huawei)公司的S系列交换机产品。 多款Huawei产品中存在内存泄露漏洞。远程攻击者可通过登录和退出HTTPS或SFTP服务器利用该漏洞造成拒绝服务(内存消耗和设备重启)。以下产品及版本受到影响:使用V200R003C00版本和V200R005C00版本软件的Huawei S5300EI,S5300SI,S5310HI,S6300EI,使用V200R003C00版本、V200R005C00版本和V200R006C00版本软件的Huawei S2350EI,
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2015-8677
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2015-8677
请登录查看更多情报信息。
Same Patch Batch · n/a · 2016-04-14 · 21 CVEs total
| CVE-2015-8560 | Foomatic foomatic-filters和cups-filters foomatic-rip 不完整黑名单漏洞 | |
| CVE-2016-1378 | Cisco Catalyst Switches IOS Software 信息泄露漏洞 | |
| CVE-2016-1352 | Cisco UCS Central Software 任意命令执行漏洞 | |
| CVE-2016-4018 | SAP HANA Data Provisioning Agent组件安全漏洞 | |
| CVE-2016-4017 | SAP HANA Data Provisioning Agent组件拒绝服务漏洞 | |
| CVE-2016-4016 | SAP Manufacturing Integration and Intelligence 跨站脚本漏洞 | |
| CVE-2016-4015 | SAP NetWeaver AS JAVA Enqueue Server组件拒绝服务漏洞 | |
| CVE-2016-4014 | SAP NetWeaver AS JAVA UDDI组件XML外部实体漏洞 | |
| CVE-2016-3079 | Red Hat Satellite和spacewalk 跨站脚本漏洞 | |
| CVE-2016-2103 | Red Hat Satellite 跨站脚本漏洞 | |
| CVE-2011-4600 | Red Hat libvirt 安全绕过漏洞 | |
| CVE-2015-8554 | Xen‘pt-msi.c’缓冲区溢出漏洞 | |
| CVE-2015-8550 | Xen PV Backend Driver 远程代码执行漏洞 | |
| CVE-2015-8540 | libpng‘pngwutil.c’整数溢出漏洞 | |
| CVE-2015-7999 | Citrix Systems Command Center SQL注入漏洞 | |
| CVE-2015-5343 | Apache Subversion mod_dav_svn 整数溢出漏洞 | |
| CVE-2015-0284 | Red Hat Satellite 跨站脚本漏洞 | |
| CVE-2015-8676 | 多款Huawei产品内存泄露漏洞 | |
| CVE-2015-8336 | Huawei FusionCompute 信息泄露漏洞 | |
| CVE-2015-5247 | Red Hat libvirt virStorageVolCreateXML API 拒绝服务漏洞 |
IV. Related Vulnerabilities
V. Comments for CVE-2015-8677
No comments yet