Vulnerability Description
Huawei NE40E and CX600 devices with software before V800R007SPH017; PTN 6900-2-M8 devices with software before V800R007SPH019; NE5000E devices with software before V800R006SPH018; and CloudEngine devices 12800 with software before V100R003SPH010 and V100R005 before V100R005SPH006 allow remote attackers with control plane access to cause a denial of service or execute arbitrary code via a crafted packet.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Huawei | Ne5000E Firmware | v800r006c00 |
| Huawei | Ne5000E | - |
| Huawei | Cloudengine 12800 Firmware | v100r003c00 |
| Huawei | Cloudengine 12800 | - |
| Huawei | Ptn 6900-2-M8 Firmware | v800r007c00 |
| Huawei | Ptn 6900-2-M8 | - |
| Huawei | Cx600 Firmware | v600r008c20 |
| Huawei | Cx600 | - |
| Huawei | Ne40E Firmware | v600r008c20 |
| Huawei | Ne40E | - |
Related Weaknesses (CWE)
References
- http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160713-01-multicaVendor Advisory
- http://www.securityfocus.com/bid/91772Third Party AdvisoryVDB Entry
- http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160713-01-multicaVendor Advisory
- http://www.securityfocus.com/bid/91772Third Party AdvisoryVDB Entry
FAQ
What is CVE-2016-6178?
CVE-2016-6178 is a vulnerability with a CVSS score of 9.8 (CRITICAL). Huawei NE40E and CX600 devices with software before V800R007SPH017; PTN 6900-2-M8 devices with software before V800R007SPH019; NE5000E devices with software before V800R006SPH018; and CloudEngine devi...
How severe is CVE-2016-6178?
CVE-2016-6178 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2016-6178?
Check the references section above for vendor advisories and patch information. Affected products include: Huawei Ne5000E Firmware, Huawei Ne5000E, Huawei Cloudengine 12800 Firmware, Huawei Cloudengine 12800, Huawei Ptn 6900-2-M8 Firmware.