What is CVE-2016-6178?

CVE-2016-6178 is a critical-severity vulnerability in Huawei Cloudengine_12800, classified under Improper Input Validation. CVSS score: 9.8/10. Published 2016-08-02.

How severe is CVE-2016-6178?

Critical severity. CVSS v3 base score is 9.8 out of 10.

Improper input validation in Huawei Cloudengine_12800

CVE-2016-6178

Huawei NE40E and CX600 devices with software before V800R007SPH017; PTN 6900-2-M8 devices with software before V800R007SPH019; NE5000E devices with software before V800R006SPH018; and CloudEngine devices 12800 with software before V100R003…

Vulnerability class: Drupalgeddon 2 (CVE-2018-7600)

EPSS: 0.013 (80.2th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 9.8 (Critical). Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H.

Affected products

Huawei Cloudengine_12800
Huawei Cloudengine_12800_firmware — versions v100r003c00, v100r003c10, v100r005c00
Huawei Cx600
Huawei Cx600_firmware — versions v600r008c20, v800r006c00, v800r006c20
Huawei Ne40e
Huawei Ne40e_firmware — versions v600r008c20, v800r006c00, v800r006c20
Huawei Ne5000e
Huawei Ne5000e_firmware — versions v800r006c00
Huawei Ptn_6900-2-m8
Huawei Ptn_6900-2-m8_firmware — versions v800r007c00

Weakness classification (CWE)

CWE-20 — Improper Input Validation

References

cve@mitre.org (x_refsource_CONFIRM, Vendor Advisory)
91772 (Third Party Advisory, VDB Entry, vdb-entry, x_refsource_BID)

Frequently asked questions

What is CVE-2016-6178?: CVE-2016-6178 is a critical-severity vulnerability in Huawei Cloudengine_12800, classified under Improper Input Validation. CVSS score: 9.8/10. Published 2016-08-02.
How severe is CVE-2016-6178?: Critical severity. CVSS v3 base score is 9.8 out of 10.