Vulnerability CVE-2016-8780


Published: 2017-04-02

Description:
Huawei CloudEngine 6800 V100R006C00, CloudEngine 7800 V100R006C00, CloudEngine 8800 V100R006C00, and CloudEngine 12800 V100R006C00 allow remote attackers with specific permission to store massive files to exhaust the shared storage space, leading to a DoS condition.

CVSS2 => (AV:N/AC:L/Au:S/C:N/I:N/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
6.8/10
6.9/10
8/10
Exploit range
Attack complexity
Authentication
Remote
Low
Single time
Confidentiality impact
Integrity impact
Availability impact
None
None
Complete
Affected software
Huawei -> Cloudengine 8800 firmware 
Huawei -> Cloudengine 7800 firmware 
Huawei -> Cloudengine 12800 firmware 
Huawei -> Cloudengine 6800 firmware 

 References:
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20161130-01-switch-en
http://www.securityfocus.com/bid/94618

Copyright 2024, cxsecurity.com

 

Back to Top