4 matches found
CVE-2016-8790
CVE-2016-8790 affects Huawei CloudEngine switches (5800/6800/7800/8800/12800) with software before V200R001C00SPC700. The issue is a buffer overflow in the Connectivity Fault Management (CFM) feature when MEP is configured; an adjacent attacker sending crafted packets can cause the main control b...
CVE-2017-8147
CVE-2017-8147 corresponds to a MaxAge LSA vulnerability in OSPF on Huawei products (e.g., AC6005/AC6605/CloudEngine series, S-series, USG/SECOSPACE lines, etc.). The issue arises from improper OSPF handling, where receiving specific LSA packets causes the Link State Age to be set to MaxAge (3600 ...
CVE-2016-8795
CVE-2016-8795 describes an integer overflow in IPFPM handling on several Huawei devices. Affected products include Huawei CloudEngine 12800, 5800, 6800, 7800, 8800 and Secospace USG6600, across multiple OS versions listed in the Huawei advisory. Remote, unauthenticated attackers can craft specifi...
CVE-2016-8780
CVE-2016-8780 affects Huawei CloudEngine devices: 6800 (V100R006C00), 7800 (V100R006C00), 8800 (V100R006C00), and 12800 (V100R006C00). The issue allows remote attackers with specific permissions to store massive files, exhausting shared storage and causing a DoS. Root cause is improper management...