Vulnerabilities > CVE-2016-8781 - Resource Management Errors vulnerability in Huawei products

CVSS 6.5 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

huawei

CWE-399

NVD

Published: 2017-04-02

Updated: 2017-04-05

Summary

Huawei Secospace USG6300 with software V500R001C20 and V500R001C20SPC200PWE, Secospace USG6500 with software V500R001C20, Secospace USG6600 with software V500R001C20 and V500R001C20SPC200PWE allow remote attackers with specific permission to log in to a device and deliver a large number of unspecified commands to exhaust memory, causing a DoS condition.

Vulnerable Configurations

Part	Description	Count
OS	Huawei Huawei Secospace Usg6300 Firmware V500R001C20 Huawei Secospace Usg6300 Firmware V500R001C20Spc200Pwe Huawei Secospace Usg6500 Firmware V500R001C20 Huawei Secospace Usg6600 Firmware V500R001C20 Huawei Secospace Usg6600 Firmware V500R001C20Spc200Pwe	5
Hardware	Huawei Huawei Secospace Usg6300 - Huawei Secospace Usg6500 - Huawei Secospace Usg6600 -	3

Common Weakness Enumeration (CWE)

CWE-399 - Resource Management Errors

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

References