Overview
- Description
- Huawei USG5500, USG2100, USG2200, and USG5100 unified security gateways with software before V300R001C10SPC600, when "DHCP Snooping" is enabled and either "option82 insert" or "option82 rebuild" is enabled on an interface, allow remote attackers to cause a denial of service (reboot) via crafted DHCP packets.
- Source
- cve@mitre.org
- NVD status
- Analyzed
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 7.1
- Impact score
- 6.9
- Exploitability score
- 8.6
- Vector string
- AV:N/AC:M/Au:N/C:N/I:N/A:C
Weaknesses
- nvd@nist.gov
- CWE-20
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:huawei:unified_security_gateway_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7EF6E6BB-A840-42F2-A821-6BF13AA8AF5B",
"versionEndIncluding": "v300r001c10"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:huawei:usg2100:*:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "FD8CA0C9-2506-41FE-BAB5-F2E96C60CA7A"
},
{
"criteria": "cpe:2.3:h:huawei:usg2200:*:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "15CAAE27-6D0D-4D76-92BF-A74ECE5A372D"
},
{
"criteria": "cpe:2.3:h:huawei:usg5100:*:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "E9751860-5969-4D12-B73D-7B0F2A935E1F"
},
{
"criteria": "cpe:2.3:h:huawei:usg5500:*:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "4D99C471-A099-4B82-BAE2-85C6B40FEDA3"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]