Lucene search

[email protected]NVD:CVE-2016-3678

HistoryApr 11, 2016 - 3:59 p.m.

CVE-2016-3678

2016-04-1115:59:10

CWE-20

[email protected]

web.nvd.nist.gov

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.003

Percentile

69.3%

JSON

Huawei Quidway S9700, S5700, S5300, S9300, and S7700 switches with software before V200R003SPH012 allow remote attackers to cause a denial of service (switch restart) via crafted traffic.

Affected configurations

Nvd

Node

huaweis5300_firmwareMatchv200r003c00spc500

huaweis5700_firmwareMatchv200r003c00spc500

huaweis7700_firmwareMatchv200r003c00spc500

huaweis9300_firmwareMatchv200r003c00spc500

huaweis9700_firmwareMatchv200r003c00spc500

AND

huaweis5300Match-

huaweis5700Match-

huaweis7700Match-

huaweis9300Match-

huaweis9700Match-

VendorProductVersionCPE
huaweis5300_firmwarev200r003c00spc500cpe:2.3:a:huawei:s5300_firmware:v200r003c00spc500:*:*:*:*:*:*:*
huaweis5700_firmwarev200r003c00spc500cpe:2.3:a:huawei:s5700_firmware:v200r003c00spc500:*:*:*:*:*:*:*
huaweis7700_firmwarev200r003c00spc500cpe:2.3:a:huawei:s7700_firmware:v200r003c00spc500:*:*:*:*:*:*:*
huaweis9300_firmwarev200r003c00spc500cpe:2.3:a:huawei:s9300_firmware:v200r003c00spc500:*:*:*:*:*:*:*
huaweis9700_firmwarev200r003c00spc500cpe:2.3:a:huawei:s9700_firmware:v200r003c00spc500:*:*:*:*:*:*:*
huaweis5300-cpe:2.3:h:huawei:s5300:-:*:*:*:*:*:*:*
huaweis5700-cpe:2.3:h:huawei:s5700:-:*:*:*:*:*:*:*
huaweis7700-cpe:2.3:h:huawei:s7700:-:*:*:*:*:*:*:*
huaweis9300-cpe:2.3:h:huawei:s9300:-:*:*:*:*:*:*:*
huaweis9700-cpe:2.3:h:huawei:s9700:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
huawei	s5300_firmware	v200r003c00spc500	cpe:2.3:a:huawei:s5300_firmware:v200r003c00spc500:::::::*
huawei	s5700_firmware	v200r003c00spc500	cpe:2.3:a:huawei:s5700_firmware:v200r003c00spc500:::::::*
huawei	s7700_firmware	v200r003c00spc500	cpe:2.3:a:huawei:s7700_firmware:v200r003c00spc500:::::::*
huawei	s9300_firmware	v200r003c00spc500	cpe:2.3:a:huawei:s9300_firmware:v200r003c00spc500:::::::*
huawei	s9700_firmware	v200r003c00spc500	cpe:2.3:a:huawei:s9700_firmware:v200r003c00spc500:::::::*
huawei	s5300	-	cpe:2.3:h:huawei:s5300:-:::::::*
huawei	s5700	-	cpe:2.3:h:huawei:s5700:-:::::::*
huawei	s7700	-	cpe:2.3:h:huawei:s7700:-:::::::*
huawei	s9300	-	cpe:2.3:h:huawei:s9300:-:::::::*
huawei	s9700	-	cpe:2.3:h:huawei:s9700:-:::::::*

References

www.huawei.com/en/psirt/security-advisories/huawei-sa-20160330-01-switch-en

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.003

Percentile

69.3%

JSON

Related for NVD:CVE-2016-3678

cve1 prion1 cvelist1 huawei1