CVE-2016-3950Improper Input Validation in Huawei Ar3200 Firmware

CWE-20Improper Input Validation3 documents3 sources
Severity
6.5MEDIUMNVD
EPSS
0.1%
top 74.48%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Huawei Ar3200 Firmware
Timeline
PublishedApr 18
Latest updateMay 17

Description

Huawei AR3200 routers with software before V200R006C10SPC300 allow remote authenticated users to cause a denial of service (restart) via crafted packets.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 2.8 | Impact: 3.6

Affected Packages1 packages

NVDhuawei/ar3200_firmwarev200r005c20, v200r005c30, v200r005c32+2

🔴Vulnerability Details

2
GHSA
GHSA-888x-26v7-57fr: Huawei AR3200 routers with software before V200R006C10SPC300 allow remote authenticated users to cause a denial of service (restart) via crafted packe2022-05-17
CVEList
CVE-2016-3950: Huawei AR3200 routers with software before V200R006C10SPC300 allow remote authenticated users to cause a denial of service (restart) via crafted packe2016-04-18
CVE-2016-3950 — Improper Input Validation in Huawei | cvebase