Integer Overflow Vulnerability in Huawei CloudEngine and Secospace Products
CVE-2016-8795
Key Information:
- Vendor
- Huawei
- Vendor
- CVE Published:
- 2 April 2017
Summary
The vulnerabilities in Huawei's CloudEngine and Secospace series allow remote, unauthenticated attackers to exploit an integer overflow by sending specially crafted IPFPM packets. This action may lead to unexpected behavior, including device resets. It affects multiple models across the CloudEngine and Secospace product lines, creating potential security risks that require immediate attention from users and administrators to mitigate.
Affected Version(s)
CloudEngine 5800, CloudEngine 6800, CloudEngine 7800, CloudEngine 8800,CloudEngine 12800, Secospace USG6600 CloudEngine 12800 V100R002C00, V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00,CloudEngine 5800 V100R002C00, V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00, CloudEngine 6800 V100R002C00, V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00,CloudEngine 7800 V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00, CloudEngine 8800 V100R006C00, Secospace USG6600 V500R001C00 CloudEngine 5800, CloudEngine 6800, CloudEngine 7800, CloudEngine 8800,CloudEngine 12800, Secospace USG6600 CloudEngine 12800 V100R002C00, V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00,CloudEngine 5800 V100R002C00, V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00, CloudEngine 6800 V100R002C00, V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00,CloudEngine 7800 V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00, CloudEngine 8800 V100R006C00, Secospace USG6600 V500R001C00
References
CVSS V3.1
Timeline
Vulnerability published
Vulnerability Reserved