Lucene search

[email protected]NVD:CVE-2016-6178

HistoryAug 02, 2016 - 4:59 p.m.

CVE-2016-6178

2016-08-0216:59:04

CWE-20

[email protected]

web.nvd.nist.gov

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.7

Confidence

High

EPSS

0.018

Percentile

88.2%

JSON

Huawei NE40E and CX600 devices with software before V800R007SPH017; PTN 6900-2-M8 devices with software before V800R007SPH019; NE5000E devices with software before V800R006SPH018; and CloudEngine devices 12800 with software before V100R003SPH010 and V100R005 before V100R005SPH006 allow remote attackers with control plane access to cause a denial of service or execute arbitrary code via a crafted packet.

Affected configurations

Nvd

Node

huaweine5000e_firmwareMatchv800r006c00

AND

huaweine5000eMatch-

Node

huaweicloudengine_12800_firmwareMatchv100r003c00

huaweicloudengine_12800_firmwareMatchv100r003c10

huaweicloudengine_12800_firmwareMatchv100r005c00

huaweicloudengine_12800_firmwareMatchv100r005c10

AND

huaweicloudengine_12800Match-

Node

huaweiptn_6900-2-m8_firmwareMatchv800r007c00

AND

huaweiptn_6900-2-m8Match-

Node

huaweicx600_firmwareMatchv600r008c20

huaweicx600_firmwareMatchv800r006c00

huaweicx600_firmwareMatchv800r006c20

huaweicx600_firmwareMatchv800r007c00

AND

huaweicx600Match-

Node

huaweine40e_firmwareMatchv600r008c20

huaweine40e_firmwareMatchv800r006c00

huaweine40e_firmwareMatchv800r006c20

huaweine40e_firmwareMatchv800r006c30

huaweine40e_firmwareMatchv800r007c00

AND

huaweine40eMatch-

VendorProductVersionCPE
huaweine5000e_firmwarev800r006c00cpe:2.3:o:huawei:ne5000e_firmware:v800r006c00:*:*:*:*:*:*:*
huaweine5000e-cpe:2.3:h:huawei:ne5000e:-:*:*:*:*:*:*:*
huaweicloudengine_12800_firmwarev100r003c00cpe:2.3:o:huawei:cloudengine_12800_firmware:v100r003c00:*:*:*:*:*:*:*
huaweicloudengine_12800_firmwarev100r003c10cpe:2.3:o:huawei:cloudengine_12800_firmware:v100r003c10:*:*:*:*:*:*:*
huaweicloudengine_12800_firmwarev100r005c00cpe:2.3:o:huawei:cloudengine_12800_firmware:v100r005c00:*:*:*:*:*:*:*
huaweicloudengine_12800_firmwarev100r005c10cpe:2.3:o:huawei:cloudengine_12800_firmware:v100r005c10:*:*:*:*:*:*:*
huaweicloudengine_12800-cpe:2.3:h:huawei:cloudengine_12800:-:*:*:*:*:*:*:*
huaweiptn_6900-2-m8_firmwarev800r007c00cpe:2.3:o:huawei:ptn_6900-2-m8_firmware:v800r007c00:*:*:*:*:*:*:*
huaweiptn_6900-2-m8-cpe:2.3:h:huawei:ptn_6900-2-m8:-:*:*:*:*:*:*:*
huaweicx600_firmwarev600r008c20cpe:2.3:o:huawei:cx600_firmware:v600r008c20:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
huawei	ne5000e_firmware	v800r006c00	cpe:2.3:o:huawei:ne5000e_firmware:v800r006c00:::::::*
huawei	ne5000e	-	cpe:2.3:h:huawei:ne5000e:-:::::::*
huawei	cloudengine_12800_firmware	v100r003c00	cpe:2.3:o:huawei:cloudengine_12800_firmware:v100r003c00:::::::*
huawei	cloudengine_12800_firmware	v100r003c10	cpe:2.3:o:huawei:cloudengine_12800_firmware:v100r003c10:::::::*
huawei	cloudengine_12800_firmware	v100r005c00	cpe:2.3:o:huawei:cloudengine_12800_firmware:v100r005c00:::::::*
huawei	cloudengine_12800_firmware	v100r005c10	cpe:2.3:o:huawei:cloudengine_12800_firmware:v100r005c10:::::::*
huawei	cloudengine_12800	-	cpe:2.3:h:huawei:cloudengine_12800:-:::::::*
huawei	ptn_6900-2-m8_firmware	v800r007c00	cpe:2.3:o:huawei:ptn_6900-2-m8_firmware:v800r007c00:::::::*
huawei	ptn_6900-2-m8	-	cpe:2.3:h:huawei:ptn_6900-2-m8:-:::::::*
huawei	cx600_firmware	v600r008c20	cpe:2.3:o:huawei:cx600_firmware:v600r008c20:::::::*

Rows per page:

1-10 of 201

References

www.huawei.com/en/psirt/security-advisories/huawei-sa-20160713-01-multicast-ldp-fec-stack-en

www.securityfocus.com/bid/91772

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.7

Confidence

High

EPSS

0.018

Percentile

88.2%

JSON

Related for NVD:CVE-2016-6178

cvelist1 prion1 openvas1 cve1 huawei1