CVE-2016-6518

high-risk

Published 2016-09-26

Memory leak in Huawei S9300, S5300, S5700, S6700, S7700, S9700, and S12700 devices allows remote attackers to cause a denial of service (memory consumption and restart) via a large number of malformed packets.

Do I need to act?

0.32% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 7.5/10 High

NETWORK / LOW complexity

Affected Products (20)

S5300 Firmware

S12700 Firmware

S6300 Firmware

S7700 Firmware

S5700 Firmware

S6700 Firmware

S9700 Firmware

S9300 Firmware

Affected Vendors

Huawei

References (4)

Vendor Advisory http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160914-01-sep-en

Third Party Advisory http://www.securityfocus.com/bid/92968

Vendor Advisory http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160914-01-sep-en

Third Party Advisory http://www.securityfocus.com/bid/92968

/ 100

high-risk

Severity 26/34 · High

Exploitability 1/34 · Minimal

Exposure 26/34 · High