7.1
CVE-2016-8795
- EPSS 0.24%
- Veröffentlicht 02.04.2017 20:59:01
- Zuletzt bearbeitet 20.04.2025 01:37:25
- Quelle psirt@huawei.com
- Teams Watchlist Login
- Unerledigt Login
Huawei CloudEngine 12800 with software V100R002C00, V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00; CloudEngine 5800 with software V100R002C00, V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00; CloudEngine 6800 with software V100R002C00, V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00; CloudEngine 7800 with software V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00; CloudEngine 8800 with software V100R006C00; and Secospace USG6600 with software V500R001C00 allow remote unauthenticated attackers to craft specific IPFPM packets to trigger an integer overflow and cause the device to reset.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Huawei ≫ Cloudengine 5800 Firmware Versionv100r002c00
Huawei ≫ Cloudengine 5800 Firmware Versionv100r003c00
Huawei ≫ Cloudengine 5800 Firmware Versionv100r003c10
Huawei ≫ Cloudengine 5800 Firmware Versionv100r005c00
Huawei ≫ Cloudengine 5800 Firmware Versionv100r005c10
Huawei ≫ Cloudengine 5800 Firmware Versionv100r006c00
Huawei ≫ Cloudengine 6800 Firmware Versionv100r002c00
Huawei ≫ Cloudengine 6800 Firmware Versionv100r003c00
Huawei ≫ Cloudengine 6800 Firmware Versionv100r003c10
Huawei ≫ Cloudengine 6800 Firmware Versionv100r005c00
Huawei ≫ Cloudengine 6800 Firmware Versionv100r005c10
Huawei ≫ Cloudengine 6800 Firmware Versionv100r006c00
Huawei ≫ Cloudengine 12800 Firmware Versionv100r002c00
Huawei ≫ Cloudengine 12800 Firmware Versionv100r003c00
Huawei ≫ Cloudengine 12800 Firmware Versionv100r003c10
Huawei ≫ Cloudengine 12800 Firmware Versionv100r005c00
Huawei ≫ Cloudengine 12800 Firmware Versionv100r005c10
Huawei ≫ Cloudengine 12800 Firmware Versionv100r006c00
Huawei ≫ Cloudengine 7800 Firmware Versionv100r003c00
Huawei ≫ Cloudengine 7800 Firmware Versionv100r003c10
Huawei ≫ Cloudengine 7800 Firmware Versionv100r005c00
Huawei ≫ Cloudengine 7800 Firmware Versionv100r005c10
Huawei ≫ Cloudengine 7800 Firmware Versionv100r006c00
Huawei ≫ Cloudengine 8800 Firmware Versionv100r006c00
Huawei ≫ Secospace Usg6600 Firmware Versionv500r001c00
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.24% | 0.446 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5.9 | 2.2 | 3.6 |
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
|
| nvd@nist.gov | 7.1 | 8.6 | 6.9 |
AV:N/AC:M/Au:N/C:N/I:N/A:C
|
CWE-190 Integer Overflow or Wraparound
The product performs a calculation that can produce an integer overflow or wraparound when the logic assumes that the resulting value will always be larger than the original value. This occurs when an integer value is incremented to a value that is too large to store in the associated representation. When this occurs, the value may become a very small or negative number.