Vulnerability Description
An unspecified module in Huawei eSpace U1910, U1911, U1930, U1960, U1980, and U1981 unified gateways with software before V200R003C00SPC300 does not properly initialize memory when processing timeout messages, which allows remote attackers to cause a denial of service (out-of-bounds memory access and device restart) via unknown vectors.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Huawei | Espace Firmware | <= v100r001c20 |
| Huawei | Espace Unified Gateway U1910 | - |
| Huawei | Espace Unified Gateway U1911 | - |
| Huawei | Espace Unified Gateway U1930 | - |
| Huawei | Espace Unified Gateway U1960 | - |
| Huawei | Espace Unified Gateway U1980 | - |
| Huawei | Espace Unified Gateway U1981 | - |
Related Weaknesses (CWE)
References
- http://www1.huawei.com/en/security/psirt/security-bulletins/security-advisories/Vendor Advisory
- http://www1.huawei.com/en/security/psirt/security-bulletins/security-advisories/Vendor Advisory
FAQ
What is CVE-2015-8083?
CVE-2015-8083 is a vulnerability with a CVSS score of 7.8 (HIGH). An unspecified module in Huawei eSpace U1910, U1911, U1930, U1960, U1980, and U1981 unified gateways with software before V200R003C00SPC300 does not properly initialize memory when processing timeout ...
How severe is CVE-2015-8083?
CVE-2015-8083 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2015-8083?
Check the references section above for vendor advisories and patch information. Affected products include: Huawei Espace Firmware, Huawei Espace Unified Gateway U1910, Huawei Espace Unified Gateway U1911, Huawei Espace Unified Gateway U1930, Huawei Espace Unified Gateway U1960.