CVE-2016-8790

CWE-119 — Buffer Overflow4 documents4 sources

Severity

5.7MEDIUM

EPSS

0.0%

top 87.27%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Huawei Cloudengine 12800 Firmware Huawei Cloudengine 5800 Firmware Huawei Cloudengine 6800 Firmware +2 more

Timeline

PublishedApr 2

Latest updateMay 17

Description

Huawei CloudEngine 5800 with software before V200R001C00SPC700, CloudEngine 6800 with software before V200R001C00SPC700, CloudEngine 7800 with software before V200R001C00SPC700, CloudEngine 8800 with software before V200R001C00SPC700, CloudEngine 12800 with software before V200R001C00SPC700 could allow the attacker to exploit a buffer overflow vulnerability by sending crafted packets to the affected system to cause a main control board reboot.

CVSS vector

CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 2.1 | Impact: 3.6

Affected Packages5 packages

▶NVDhuawei/cloudengine_5800_firmware4 versions+3

▶NVDhuawei/cloudengine_6800_firmware4 versions+3

▶NVDhuawei/cloudengine_7800_firmware4 versions+3

▶NVDhuawei/cloudengine_8800_firmwarev100r006c00

▶NVDhuawei/cloudengine_12800_firmware4 versions+3

🔴Vulnerability Details

GHSA

GHSA-cj35-9pcq-xm7q: Huawei CloudEngine 5800 with software before V200R001C00SPC700, CloudEngine 6800 with software before V200R001C00SPC700, CloudEngine 7800 with softwar↗2022-05-17

▶

CVEList

CVE-2016-8790: Huawei CloudEngine 5800 with software before V200R001C00SPC700, CloudEngine 6800 with software before V200R001C00SPC700, CloudEngine 7800 with softwar↗2017-04-02

▶

💬Community

Bugzilla

CVE-2016-1514 libebml: EbmlUnicodeString Heap Information Leak↗2017-01-12

▶