1. Home
  2. CVE Database
  3. CVE-2016-8795
MEDIUM · 5.9

CVE-2016-8795

Huawei CloudEngine 12800 with software V100R002C00, V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00; CloudEngine 5800 with software V100R002C00, V100R003C00, V100R003C10, V100R005C00, ...

Vulnerability Description

Huawei CloudEngine 12800 with software V100R002C00, V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00; CloudEngine 5800 with software V100R002C00, V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00; CloudEngine 6800 with software V100R002C00, V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00; CloudEngine 7800 with software V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00; CloudEngine 8800 with software V100R006C00; and Secospace USG6600 with software V500R001C00 allow remote unauthenticated attackers to craft specific IPFPM packets to trigger an integer overflow and cause the device to reset.

CVSS Score

5.9

MEDIUM

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
NONE
Integrity
NONE
Availability
HIGH

Affected Products

VendorProductVersions
HuaweiCloudengine 5800 Firmwarev100r002c00
HuaweiCloudengine 5800-
HuaweiCloudengine 6800 Firmwarev100r002c00
HuaweiCloudengine 6800-
HuaweiCloudengine 12800 Firmwarev100r002c00
HuaweiCloudengine 12800-
HuaweiCloudengine 7800 Firmwarev100r003c00
HuaweiCloudengine 7800-
HuaweiCloudengine 8800 Firmwarev100r006c00
HuaweiCloudengine 8800-
HuaweiSecospace Usg6600 Firmwarev500r001c00
HuaweiSecospace Usg6600-

Related Weaknesses (CWE)

CWE-190

References

FAQ

What is CVE-2016-8795?

CVE-2016-8795 is a vulnerability with a CVSS score of 5.9 (MEDIUM). Huawei CloudEngine 12800 with software V100R002C00, V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00; CloudEngine 5800 with software V100R002C00, V100R003C00, V100R003C10, V100R005C00, ...

How severe is CVE-2016-8795?

CVE-2016-8795 has been rated MEDIUM with a CVSS base score of 5.9/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2016-8795?

Check the references section above for vendor advisories and patch information. Affected products include: Huawei Cloudengine 5800 Firmware, Huawei Cloudengine 5800, Huawei Cloudengine 6800 Firmware, Huawei Cloudengine 6800, Huawei Cloudengine 12800 Firmware.