Format String Vulnerability in Huawei Routers
CVE-2016-6901

6.5MEDIUM

Key Information:

Vendor
Huawei
Vendor
CVE Published:
26 September 2016

Summary

A format string vulnerability exists in multiple models of Huawei routers, allowing remote authenticated users to exploit format string specifiers. This can lead to a denial of service, making systems unresponsive. Users are encouraged to upgrade their software to versions V200R007C00SPC900 or newer to mitigate this security risk. Comprehensive patches are available from the vendor.

References

CVSS V3.1

Score:
6.5
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.