Vulnerability Description
The mDNS module in Huawei WLAN AC6005, AC6605, and ACU2 devices with software before V200R006C00SPC100 allows remote attackers to obtain sensitive information by leveraging failure to restrict processing of mDNS unicast queries to the link local network.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Huawei | Wlan Acu2 Firmware | <= v200r005c00 |
| Huawei | Wlan Acu2 | - |
| Huawei | Wlan Ac6005 Firmware | <= v200r005c00 |
| Huawei | Wlan Ac6005 | - |
| Huawei | Wlan Ac6605 Firmware | <= v200r005c00 |
| Huawei | Wlan Ac6605 | - |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/76684Third Party AdvisoryVDB Entry
- http://www1.huawei.com/en/security/psirt/security-bulletins/security-advisories/MitigationVendor Advisory
- http://www.securityfocus.com/bid/76684Third Party AdvisoryVDB Entry
- http://www1.huawei.com/en/security/psirt/security-bulletins/security-advisories/MitigationVendor Advisory
FAQ
What is CVE-2015-6586?
CVE-2015-6586 is a vulnerability with a CVSS score of 7.5 (HIGH). The mDNS module in Huawei WLAN AC6005, AC6605, and ACU2 devices with software before V200R006C00SPC100 allows remote attackers to obtain sensitive information by leveraging failure to restrict process...
How severe is CVE-2015-6586?
CVE-2015-6586 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2015-6586?
Check the references section above for vendor advisories and patch information. Affected products include: Huawei Wlan Acu2 Firmware, Huawei Wlan Acu2, Huawei Wlan Ac6005 Firmware, Huawei Wlan Ac6005, Huawei Wlan Ac6605 Firmware.