PT-2017-6561 · Huawei · Huawei Oceanstor Uds

Published

2017-06-08

·

Updated

2017-06-20

·

CVE-2015-2251

CVSS v2.0

5.0

Medium

VectorAV:N/AC:L/Au:N/C:P/I:N/A:N
Name of the Vulnerable Software and Affected Versions Huawei OceanStor UDS devices versions prior to V100R002C01SPC102
Description The issue allows remote attackers to obtain sensitive information via a crafted UDS patch that utilizes JavaScript.
Recommendations For versions prior to V100R002C01SPC102, update to V100R002C01SPC102 or later to resolve the issue.

Fix

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-200

Related Identifiers

CVE-2015-2251

Affected Products

Huawei Oceanstor Uds