CVE-2014-4190

CVSS V2 High 7.8 CVSS V3 None
Description
Multiple heap-based buffer overflows in Huawei Campus Series Switches S3700HI, S5700, S6700, S3300HI, S5300, S6300, S9300, S7700, and LSW S9700 with software V200R001 before V200R001SPH013; S5700, S6700, S5300, and S6300 with software V200R002 before V200R002SPH005; S7700, S9300, S9300E, S5300, S5700, S6300, S6700, S2350, S2750, and LSW S9700 with software V200R003 before V200R003SPH005; and S7700, S9300, S9300E, and LSW S9700 with software V200R005 before V200R005C00SPC300 allow remote attackers to cause a denial of service (device restart) via a crafted length field in a packet.
Overview
  • CVE ID
  • CVE-2014-4190
  • Assigner
  • cve@mitre.org
  • Vulnerability Status
  • Analyzed
  • Published Version
  • 2014-06-17T14:55:08
  • Last Modified Date
  • 2014-06-18T17:06:34
CPE Configuration (Product)
CPE Vulnerable Operator Version Start Version End
AND
cpe:2.3:a:huawei:campus_series_switch_software:v200r001:*:*:*:*:*:*:* 1 OR
cpe:2.3:h:huawei:campus_lsw_s9700:-:*:*:*:*:*:*:* 1 OR
cpe:2.3:h:huawei:campus_s3300hi:-:*:*:*:*:*:*:* 1 OR
cpe:2.3:h:huawei:campus_s3700hi:-:*:*:*:*:*:*:* 1 OR
cpe:2.3:h:huawei:campus_s5300:-:*:*:*:*:*:*:* 1 OR
cpe:2.3:h:huawei:campus_s5700:-:*:*:*:*:*:*:* 1 OR
cpe:2.3:h:huawei:campus_s6300:-:*:*:*:*:*:*:* 1 OR
cpe:2.3:h:huawei:campus_s6700:-:*:*:*:*:*:*:* 1 OR
cpe:2.3:h:huawei:campus_s7700:-:*:*:*:*:*:*:* 1 OR
cpe:2.3:h:huawei:campus_s9300:-:*:*:*:*:*:*:* 1 OR
AND
cpe:2.3:a:huawei:campus_series_switch_software:v200r005:*:*:*:*:*:*:* 1 OR
cpe:2.3:h:huawei:campus_lsw_s9700:-:*:*:*:*:*:*:* 1 OR
cpe:2.3:h:huawei:campus_s7700:-:*:*:*:*:*:*:* 1 OR
cpe:2.3:h:huawei:campus_s9300:-:*:*:*:*:*:*:* 1 OR
cpe:2.3:h:huawei:campus_s9300e:-:*:*:*:*:*:*:* 1 OR
AND
cpe:2.3:a:huawei:campus_series_switch_software:v200r003:*:*:*:*:*:*:* 1 OR
cpe:2.3:h:huawei:campus_lsw_s9700:-:*:*:*:*:*:*:* 1 OR
cpe:2.3:h:huawei:campus_s2350:-:*:*:*:*:*:*:* 1 OR
cpe:2.3:h:huawei:campus_s2750:-:*:*:*:*:*:*:* 1 OR
cpe:2.3:h:huawei:campus_s5300:-:*:*:*:*:*:*:* 1 OR
cpe:2.3:h:huawei:campus_s5700:-:*:*:*:*:*:*:* 1 OR
cpe:2.3:h:huawei:campus_s6300:-:*:*:*:*:*:*:* 1 OR
cpe:2.3:h:huawei:campus_s6700:-:*:*:*:*:*:*:* 1 OR
cpe:2.3:h:huawei:campus_s7700:-:*:*:*:*:*:*:* 1 OR
cpe:2.3:h:huawei:campus_s9300:-:*:*:*:*:*:*:* 1 OR
cpe:2.3:h:huawei:campus_s9300e:-:*:*:*:*:*:*:* 1 OR
AND
cpe:2.3:a:huawei:campus_series_switch_software:v200r002:*:*:*:*:*:*:* 1 OR
cpe:2.3:h:huawei:campus_s5300:-:*:*:*:*:*:*:* 1 OR
cpe:2.3:h:huawei:campus_s5700:-:*:*:*:*:*:*:* 1 OR
cpe:2.3:h:huawei:campus_s6300:-:*:*:*:*:*:*:* 1 OR
cpe:2.3:h:huawei:campus_s6700:-:*:*:*:*:*:*:* 1 OR
CVSS Version 2
  • Version
  • 2.0
  • Vector String
  • AV:N/AC:L/Au:N/C:N/I:N/A:C
  • Access Vector
  • NETWORK
  • Access Compatibility
  • LOW
  • Authentication
  • NONE
  • Confidentiality Impact
  • NONE
  • Integrity Impact
  • NONE
  • Availability Impact
  • COMPLETE
  • Base Score
  • 7.8
  • Severity
  • HIGH
  • Exploitability Score
  • 10
  • Impact Score
  • 6.9
History
Created Old Value New Value Data Type Notes
2022-05-10 10:33:34 Added to TrackCVE
2022-12-01 23:33:53 2014-06-17T14:55Z 2014-06-17T14:55:08 CVE Published Date updated
2022-12-01 23:33:53 2014-06-18T17:06:34 CVE Modified Date updated
2022-12-01 23:33:53 Analyzed Vulnerability Status updated