CVE-2014-4707

Name of the Vulnerable Software and Affected Versions Huawei Campus S7700 versions V200R001C00SPC300 through V200R003C00SPC300 Huawei Campus S9300 versions V200R001C00SPC300 through V200R003C00SPC300 Huawei Campus S9700 versions V200R001C00SPC300 through V200R003C00SPC300

Description The issue allows unauthorized users to upgrade the bootrom or bootload software, bypass a Menu protection mechanism, conduct a Menu compromise attack, or bypass a Menu/upgrade protection mechanism. This can be achieved through the BootRom and Boot Menu vulnerability, which enables unauthorized users to bypass the system security check mechanism and compromise the switch.

Recommendations For Huawei Campus S7700 versions V200R001C00SPC300 through V200R003C00SPC300, restrict access to the bootrom and bootload software upgrade functionality until a patch is available. For Huawei Campus S9300 versions V200R001C00SPC300 through V200R003C00SPC300, consider disabling the Boot Menu to prevent unauthorized upgrades and bypassing of the system security check mechanism. For Huawei Campus S9700 versions V200R001C00SPC300 through V200R003C00SPC300, avoid using the BootRom Menu until the issue is resolved, and restrict access to the upgrade functionality for the small BootRom/main BootRom or FPGA/CPLD software.