CVE-2016-6900

CWE-3993 documents3 sources

Severity

5.5MEDIUM

EPSS

0.0%

top 94.32%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Huawei Rh1288 V3 Server Firmware Huawei Rh2288 V3 Server Firmware Huawei Rh2288h V3 Server Firmware +4 more

Timeline

PublishedSep 7

Latest updateMay 17

Description

The Intelligent Baseboard Management Controller (iBMC) in Huawei RH1288 V3 servers with software before V100R003C00SPC613; RH2288 V3 servers with software before V100R003C00SPC617; RH2288H V3 servers with software before V100R003C00SPC515; RH5885 V3 servers with software before V100R003C10SPC102; and XH620 V3, XH622 V3, and XH628 V3 servers with software before V100R003C00SPC610 allows local users to cause a denial of service (iBMC resource consumption) via unspecified vectors.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages7 packages

▶NVDhuawei/rh2288h_v3v100r003c00

▶NVDhuawei/xh620_v3v100r003c00

▶NVDhuawei/xh622_v3v100r003c00

▶NVDhuawei/xh628_v3v100r003c00

▶NVDhuawei/rh1288_v3v100r003c00

🔴Vulnerability Details

GHSA

GHSA-r33x-6cvf-9vr7: The Intelligent Baseboard Management Controller (iBMC) in Huawei RH1288 V3 servers with software before V100R003C00SPC613; RH2288 V3 servers with soft↗2022-05-17

▶

CVEList

CVE-2016-6900: The Intelligent Baseboard Management Controller (iBMC) in Huawei RH1288 V3 servers with software before V100R003C00SPC613; RH2288 V3 servers with soft↗2016-09-07

▶