CVE-2016-8786

CWE-20Improper Input Validation3 documents3 sources
Severity
7.5HIGH
EPSS
0.2%
top 55.27%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
5
Huawei S12700 FirmwareHuawei S5700 FirmwareHuawei S6700 Firmware+2 more
Timeline
PublishedMar 9
Latest updateMay 14

Description

Huawei S12700 V200R005C00, V200R006C00, V200R007C00, V200R008C00, S5700 V200R006C00, V200R007C00, V200R008C00, S6700 V200R008C00, S7700 V200R001C00, V200R002C00, V200R003C00, V200R005C00, V200R006C00, V200R007C00, V200R008C00, S9700 V200R001C00, V200R002C00, V200R003C00, V200R005C00, V200R006C00, V200R007C00, V200R008C00 have a denial of service (DoS) vulnerability. Due to the lack of input validation, a remote attacker may craft a malformed Resource Reservation Protocol (RSVP) packet and send i

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages5 packages

NVDhuawei/s5700_firmwarev200r006c00, v200r007c00, v200r008c00+2
NVDhuawei/s6700_firmwarev200r008c00
NVDhuawei/s7700_firmware7 versions+6
NVDhuawei/s9700_firmware7 versions+6
NVDhuawei/s12700_firmware4 versions+3

🔴Vulnerability Details

2
GHSA
GHSA-v32r-xrgh-2vx8: Huawei S12700 V200R005C00, V200R006C00, V200R007C00, V200R008C00, S5700 V200R006C00, V200R007C00, V200R008C00, S6700 V200R008C00, S7700 V200R001C00, V2022-05-14
CVEList
CVE-2016-8786: Huawei S12700 V200R005C00, V200R006C00, V200R007C00, V200R008C00, S5700 V200R006C00, V200R007C00, V200R008C00, S6700 V200R008C00, S7700 V200R001C00, V2018-03-09
CVE-2016-8786 (HIGH CVSS 7.5) | Huawei S12700 V200R005C00 | cvebase.io