CVE-2016-8795

Description

Huawei CloudEngine 12800 with software V100R002C00, V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00; CloudEngine 5800 with software V100R002C00, V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00; CloudEngine 6800 with software V100R002C00, V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00; CloudEngine 7800 with software V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00; CloudEngine 8800 with software V100R006C00; and Secospace USG6600 with software V500R001C00 allow remote unauthenticated attackers to craft specific IPFPM packets to trigger an integer overflow and cause the device to reset.

Risk Information

Base Score

5.9

MODERATE

Vector

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS Score

Exploitation Probability

0.241

Associated Vulnerability

Vulnerability	OS Platform
Vulnerabilities CVE-2016-8790 ,CVE-2016-8795 are affected in cloudengine_5800_firmware v100r006c00	NCM
Vulnerabilities CVE-2016-8790 ,CVE-2016-8795 are affected in cloudengine_5800_firmware v100r005c10	NCM
Vulnerabilities CVE-2016-8790 ,CVE-2016-8795 are affected in cloudengine_5800_firmware v100r005c00	NCM
Vulnerabilities CVE-2016-8790 ,CVE-2016-8795 are affected in cloudengine_5800_firmware v100r003c10	NCM
Vulnerabilities CVE-2016-8795 are affected in cloudengine_5800_firmware v100r003c00	NCM
Vulnerabilities CVE-2016-8795 are affected in cloudengine_5800_firmware v100r002c00	NCM
Integer Overflow or Wraparound Vulnerability (CVE-2016-8795)	NCM

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234