CVE-2015-8087

Name of the Vulnerable Software and Affected Versions Huawei NE20E-S, NE40E-M, and NE40E-M2 routers with software before V800R007C10SPC100 Huawei NE40E and NE80E routers with software before V800R007C00SPC100

Description A VPN routing and forwarding (VRF) hopping issue exists, allowing remote attackers to send crafted MPLS forwarding packets to other VPNs, potentially leading to flooding attacks. This occurs because the routers do not strictly check received MPLS forwarding packets, enabling an attacker to forward crafted packets to MPLS links and conduct flood attacks against the destination VPN.

Recommendations For Huawei NE20E-S, NE40E-M, and NE40E-M2 routers with software before V800R007C10SPC100, update to V800R007C10SPC100 or later. For Huawei NE40E and NE80E routers with software before V800R007C00SPC100, update to V800R007C00SPC100 or later.