CVE-2016-8795

moderate-risk

Published 2017-04-02

Huawei CloudEngine 12800 with software V100R002C00, V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00; CloudEngine 5800 with software V100R002C00, V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00; CloudEngine 6800 with software V100R002C00, V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00; CloudEngine 7800 with software V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00; CloudEngine 8800 with software V100R006C00; and Secospace USG6600 with software V500R001C00 allow remote unauthenticated attackers to craft specific IPFPM packets to trigger an integer overflow and cause the device to reset.

Do I need to act?

0.24% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 5.9/10 Medium

NETWORK / HIGH complexity

Affected Products (20)

Cloudengine 5800 Firmware

Cloudengine 6800 Firmware

Cloudengine 12800 Firmware

Cloudengine 7800 Firmware

Secospace Usg6600 Firmware

Cloudengine 5800 Firmware

Cloudengine 6800 Firmware

Cloudengine 12800 Firmware

Affected Vendors

Huawei

References (4)

Vendor Advisory http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20161123-01-vrp-en

Third Party Advisory http://www.securityfocus.com/bid/94504

Vendor Advisory http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20161123-01-vrp-en

Third Party Advisory http://www.securityfocus.com/bid/94504

/ 100

moderate-risk

Severity 18/34 · Moderate

Exploitability 1/34 · Minimal

Exposure 21/34 · High