CVE-2016-8802 Information
Feb 14, 2021
cve
Description
The security policy processing module in Huawei Secospace USG6300 with software V500R001C20SPC100 V500R001C20SPC101 V500R001C20SPC200; Secospace USG6500 with software V500R001C20SPC100 V500R001C20SPC101 V500R001C20SPC200; Secospace USG6600 with software V500R001C20SPC100 V500R001C20SPC101 V500R001C20SPC200 allows authenticated attackers to setup a specific security policy into the devices causing a buffer overflow and crashing the system.
CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Reference
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20161125-01-usg-en http://www.securityfocus.com/bid/94538
Attack Complexity
LOW
Privileges Required
LOW
User Interaction Required
LOW
Scope
NONE
Confidentiality Impact
UNCHANGED
Integrity Impact
NONE
Availability Impact
NONE
Base Score
HIGH
Base Severity
6.5
Share on: