Описание
Huawei USG5500, USG2100, USG2200, and USG5100 unified security gateways with software before V300R001C10SPC600, when "DHCP Snooping" is enabled and either "option82 insert" or "option82 rebuild" is enabled on an interface, allow remote attackers to cause a denial of service (reboot) via crafted DHCP packets.
Уязвимые конфигурации
Конфигурация 1Версия до v300r001c10 (включая)
Одновременно
cpe:2.3:o:huawei:unified_security_gateway_firmware:*:*:*:*:*:*:*:*
Одно из
cpe:2.3:h:huawei:usg2100:*:*:*:*:*:*:*:*
cpe:2.3:h:huawei:usg2200:*:*:*:*:*:*:*:*
cpe:2.3:h:huawei:usg5100:*:*:*:*:*:*:*:*
cpe:2.3:h:huawei:usg5500:*:*:*:*:*:*:*:*
EPSS
Процентиль: 57%
0.00357
Низкий
7.1 High
CVSS2
Дефекты
CWE-20
Связанные уязвимости
github
больше 3 лет назад
Huawei USG5500, USG2100, USG2200, and USG5100 unified security gateways with software before V300R001C10SPC600, when "DHCP Snooping" is enabled and either "option82 insert" or "option82 rebuild" is enabled on an interface, allow remote attackers to cause a denial of service (reboot) via crafted DHCP packets.
EPSS
Процентиль: 57%
0.00357
Низкий
7.1 High
CVSS2
Дефекты
CWE-20