CVE-2015-8675

Vulnerability

The vulnerability resides in Huawei S5300 Campus Series switches running software versions prior to V200R005SPH008 [1]. When an administrator uploads files to certain directories via the device interface, the system displays the entered password in plaintext instead of masking it. This occurs due to the lack of password masking during the upload process, leaking the credential on screen.

Exploitation

An attacker must have physical proximity to the switch to view the display while an authorized user performs a file upload operation. The attacker does not require authentication or network access; simply observing the screen during the upload event reveals the plaintext password [1].

Impact

Successful exploitation results in disclosure of the upload account password, which could then be used to gain unauthorized access to the switch or connected network resources. This compromises confidentiality and could enable further attacks depending on the privileges of the exposed account [1].

Mitigation

Huawei has released software version V200R005SPH008 which resolves the issue by masking passwords during file upload [1]. Administrators should upgrade to this or a later fixed version. No workaround is provided in the advisory, but limiting physical access to authorized personnel can reduce exposure until patching is complete.