CVE-2016-5722 in OceanStorinfo

Summary

OceanStor 5300 V3, 5500 V3, 5600 V3, 5800 V3, 6800 V3, 18800 V3, and 18500 V3 before V300R003C10 sends the plaintext session token in the HTTP header, which allows remote attackers to conduct replay attacks and obtain sensitive information by sniffing the network.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

ID	Vulnerability	CWE	Exp	Cou	CVE
88115	Huawei OceanStor Session information disclosure	200	Not defined	Official fix	CVE-2016-5722

Reservation

06/17/2016

Disclosure

06/24/2016

Status

Confirmed

Entries

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-5722
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-5722
CVE Details	https://www.cvedetails.com/cve/CVE-2016-5722/

◂ Previous Overview Next ▸

Interested in the pricing of exploits?

See the underground prices here!