CVE-2015-8675

Name of the Vulnerable Software and Affected Versions Huawei S5300 Campus Series switches versions prior to V200R005SPH008

Description The issue concerns an information exposure problem where passwords are not masked when uploading files to certain directories, allowing physically proximate attackers to obtain sensitive password information by reading the display. This occurs because the system does not hide passwords entered by the user, leading to potential password leaks.

Recommendations For versions prior to V200R005SPH008, consider disabling the file upload feature to the affected directories until a patch is available. Restrict physical access to the switches to minimize the risk of exploitation. Update to a version V200R005SPH008 or later to resolve the issue.