CVE-2015-8265 - OpenCVE

Huawei Mobile WiFi E5151 routers with software before E5151s-2TCPU-V200R001B146D27SP00C00 and E5186 routers with software before V200R001B310D01SP00C00 allow DNS query packets using the static source port, which makes it easier for remote attackers to spoof responses via unspecified vectors.

No CVSS v4.0

No CVSS v3.1

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact High

Availability Impact None

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact Partial

Availability Impact None

AV:N/AC:L/Au:N/C:N/I:P/A:N

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Huawei	E5151 E5151 Firmware E5186 E5186 Firmware

Configuration 1 [-]

AND

OR	cpe:2.3:h:huawei:e5151:-:::::::*
	cpe:2.3:h:huawei:e5186:-:::::::*

OR	cpe:2.3:o:huawei:e5151_firmware::::::::
	cpe:2.3:o:huawei:e5186_firmware::::::::

No data.

References

Link	Providers
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160129-01-dns-en
http://www.securityfocus.com/bid/82246
https://www.kb.cert.org/vuls/id/972224

History

No history.

MITRE

Status: PUBLISHED

Assigner: certcc

Published: 2016-02-01T21:00:00

Updated: 2024-08-06T08:13:31.691Z

Reserved: 2015-11-19T00:00:00

Link: CVE-2015-8265

Vulnrichment

No data.

NVD

Status : Modified

Published: 2016-02-01T21:59:00.127

Modified: 2016-11-28T19:46:16.390

Link: CVE-2015-8265

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2016-01-29T00:00:00", "descriptions": [{"lang": "en", "value": "Huawei Mobile WiFi E5151 routers with software before E5151s-2TCPU-V200R001B146D27SP00C00 and E5186 routers with software before V200R001B310D01SP00C00 allow DNS query packets using the static source port, which makes it easier for remote attackers to spoof responses via unspecified vectors."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2016-11-25T19:57:01", "orgId": "37e5125f-f79b-445b-8fad-9564f167944b", "shortName": "certcc"}, "references": [{"name": "82246", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/82246"}, {"name": "VU#972224", "tags": ["third-party-advisory", "x_refsource_CERT-VN"], "url": "https://www.kb.cert.org/vuls/id/972224"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160129-01-dns-en"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cert@cert.org", "ID": "CVE-2015-8265", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Huawei Mobile WiFi E5151 routers with software before E5151s-2TCPU-V200R001B146D27SP00C00 and E5186 routers with software before V200R001B310D01SP00C00 allow DNS query packets using the static source port, which makes it easier for remote attackers to spoof responses via unspecified vectors."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "82246", "refsource": "BID", "url": "http://www.securityfocus.com/bid/82246"}, {"name": "VU#972224", "refsource": "CERT-VN", "url": "https://www.kb.cert.org/vuls/id/972224"}, {"name": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160129-01-dns-en", "refsource": "CONFIRM", "url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160129-01-dns-en"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T08:13:31.691Z"}, "title": "CVE Program Container", "references": [{"name": "82246", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/82246"}, {"name": "VU#972224", "tags": ["third-party-advisory", "x_refsource_CERT-VN", "x_transferred"], "url": "https://www.kb.cert.org/vuls/id/972224"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160129-01-dns-en"}]}]}, "cveMetadata": {"assignerOrgId": "37e5125f-f79b-445b-8fad-9564f167944b", "assignerShortName": "certcc", "cveId": "CVE-2015-8265", "datePublished": "2016-02-01T21:00:00", "dateReserved": "2015-11-19T00:00:00", "dateUpdated": "2024-08-06T08:13:31.691Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:h:huawei:e5151:-:*:*:*:*:*:*:*", "matchCriteriaId": "8772FA92-4630-4091-891C-B202C60336D1", "vulnerable": false}, {"criteria": "cpe:2.3:h:huawei:e5186:-:*:*:*:*:*:*:*", "matchCriteriaId": "0D6F57FB-7B64-4444-9494-799468207B5B", "vulnerable": false}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:o:huawei:e5151_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "205A4672-D34D-4251-8CA9-B67B9DEAC003", "versionEndIncluding": "e5151s-2tcpu-v200r001b141d13sp00c1080", "vulnerable": true}, {"criteria": "cpe:2.3:o:huawei:e5186_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "D4DC86F6-D697-4AF5-8593-7EFE9CE2778D", "versionEndIncluding": "v200r001b306d01c00", "vulnerable": true}], "negate": false, "operator": "OR"}], "operator": "AND"}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Huawei Mobile WiFi E5151 routers with software before E5151s-2TCPU-V200R001B146D27SP00C00 and E5186 routers with software before V200R001B310D01SP00C00 allow DNS query packets using the static source port, which makes it easier for remote attackers to spoof responses via unspecified vectors."}, {"lang": "es", "value": "\"Routers Huawei Mobile WiFi E5151 con software en versiones anteriores a E5151s-2TCPU-V200R001B146D27SP00C00 y routers E5186 con software en versiones anteriores a V200R001B310D01SP00C00 permiten paquetes de consulta DNS utilizando el puerto de origen est\u00e1tico, lo que hace m\u00e1s f\u00e1cil para atacantes remotos suplantar respuestas a trav\u00e9s de vectores no especificados."}], "id": "CVE-2015-8265", "lastModified": "2016-11-28T19:46:16.390", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N", "version": "3.0"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2016-02-01T21:59:00.127", "references": [{"source": "cret@cert.org", "tags": ["Vendor Advisory"], "url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160129-01-dns-en"}, {"source": "cret@cert.org", "url": "http://www.securityfocus.com/bid/82246"}, {"source": "cret@cert.org", "tags": ["Third Party Advisory", "US Government Resource"], "url": "https://www.kb.cert.org/vuls/id/972224"}], "sourceIdentifier": "cret@cert.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-20"}], "source": "nvd@nist.gov", "type": "Primary"}]}