Denial of Service Vulnerability in Huawei Unified Security Gateways
CVE-2016-8278

7.5HIGH

Key Information:

Vendor: Huawei
Status: Usg9520; Usg9560; Usg9580
Vendor: CVE Published:; 3 October 2016

What is CVE-2016-8278?

Huawei unified security gateways, specifically the USG9520, USG9560, and USG9580, are vulnerable to a denial of service condition that can be triggered by remote attackers. Exploitation of this vulnerability allows unauthorized individuals to initiate device restarts through unspecified URLs, potentially disrupting network operations and compromising security protocols.

References

http://www.securityfocus.com/bid/93099

vdb-entryx_refsource_BID

http://www.huawei.com/en/psirt/security-advisories/huawei...

x_refsource_CONFIRM

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 3, 2016
Vulnerability Reserved
Sep 18, 2016