CVE-2016-4576

high-risk

Published 2016-05-23

Buffer overflow in the Application Specific Packet Filtering (ASPF) functionality in the Huawei IPS Module, NGFW Module, NIP6300, NIP6600, Secospace USG6300, USG6500, USG6600, USG9500, and AntiDDoS8000 devices with software before V500R001C20SPC100 allows remote attackers to cause a denial of service or execute arbitrary code via a crafted packet, related to "illegitimate parameters."

Do I need to act?

2.3% chance of exploitation in next 30 days

EPSS score — moderate exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 9.8/10 Critical

NETWORK / LOW complexity

Affected Products (9)

Nip6300 Firmware

Usg9500 Firmware

Secospace Usg6300 Firmware

Secospace Usg6600 Firmware

Ips Module Firmware

Secospace Usg6500 Firmware

Secospace Antiddos8000 Firmware

Ngfw Module Firmware

Nip6600 Firmware

Affected Vendors

Huawei

References (4)

Vendor Advisory http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160511-01-aspf-en

http://www.securityfocus.com/bid/90530

Vendor Advisory http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160511-01-aspf-en

http://www.securityfocus.com/bid/90530

/ 100

high-risk

Severity 32/34 · Critical

Exploitability 5/34 · Minimal

Exposure 15/34 · Moderate