Lucene search

[email protected]CVE-2016-3678

HistoryApr 11, 2016 - 3:59 p.m.

CVE-2016-3678

2016-04-1115:59:10

CWE-20

[email protected]

web.nvd.nist.gov

huawei

switches

vulnerability

cve-2016-3678

denial of service

nvd

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.4 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

64.8%

JSON

Huawei Quidway S9700, S5700, S5300, S9300, and S7700 switches with software before V200R003SPH012 allow remote attackers to cause a denial of service (switch restart) via crafted traffic.

Affected configurations

NVD

Node

huaweis5300_firmwareMatchv200r003c00spc500

huaweis5700_firmwareMatchv200r003c00spc500

huaweis7700_firmwareMatchv200r003c00spc500

huaweis9300_firmwareMatchv200r003c00spc500

huaweis9700_firmwareMatchv200r003c00spc500

AND

huaweis5300Match-

huaweis5700Match-

huaweis7700Match-

huaweis9300Match-

huaweis9700Match-

CPENameOperatorVersion
huawei:s5300_firmwarehuawei s5300 firmwareeqv200r003c00spc500
huawei:s5700_firmwarehuawei s5700 firmwareeqv200r003c00spc500
huawei:s7700_firmwarehuawei s7700 firmwareeqv200r003c00spc500
huawei:s9300_firmwarehuawei s9300 firmwareeqv200r003c00spc500
huawei:s9700_firmwarehuawei s9700 firmwareeqv200r003c00spc500

CPE	Name	Operator	Version
huawei:s5300_firmware	huawei s5300 firmware	eq	v200r003c00spc500
huawei:s5700_firmware	huawei s5700 firmware	eq	v200r003c00spc500
huawei:s7700_firmware	huawei s7700 firmware	eq	v200r003c00spc500
huawei:s9300_firmware	huawei s9300 firmware	eq	v200r003c00spc500
huawei:s9700_firmware	huawei s9700 firmware	eq	v200r003c00spc500

References

www.huawei.com/en/psirt/security-advisories/huawei-sa-20160330-01-switch-en

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.4 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

64.8%

JSON

Related for CVE-2016-3678

nvd1 prion1 cvelist1 huawei1