What is CVE-2016-8790?

CVE-2016-8790 is a medium-severity vulnerability in Huawei Cloudengine_12800, classified under Improper Restriction of Operations within the Bounds of a Memory Buffer. CVSS score: 5.7/10. Published 2017-04-02.

How severe is CVE-2016-8790?

Medium severity. CVSS v3 base score is 5.7 out of 10.

Buffer overflow in Huawei Cloudengine_12800

CVE-2016-8790

Huawei CloudEngine 5800 with software before V200R001C00SPC700, CloudEngine 6800 with software before V200R001C00SPC700, CloudEngine 7800 with software before V200R001C00SPC700, CloudEngine 8800 with software before V200R001C00SPC700, Clou…

Vulnerability class: Buffer Overflow

EPSS: 0.000 (13.1th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 5.7 (Medium). Vector: CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H.

Affected products

Huawei Cloudengine_12800
Huawei Cloudengine_12800_firmware — versions v100r003c10, v100r005c00, v100r005c10
Huawei Cloudengine_5800
Huawei Cloudengine_5800_firmware — versions v100r003c10, v100r005c00, v100r005c10
Huawei Cloudengine_6800
Huawei Cloudengine_6800_firmware — versions v100r003c10, v100r005c00, v100r005c10
Huawei Cloudengine_7800
Huawei Cloudengine_7800_firmware — versions v100r003c10, v100r005c00, v100r005c10
Huawei Cloudengine_8800
Huawei Cloudengine_8800_firmware — versions v100r006c00

Weakness classification (CWE)

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer

References

psirt@huawei.com (x_refsource_CONFIRM, Vendor Advisory)
psirt@huawei.com (VDB Entry, Third Party Advisory, vdb-entry, x_refsource_BID)

Frequently asked questions

What is CVE-2016-8790?: CVE-2016-8790 is a medium-severity vulnerability in Huawei Cloudengine_12800, classified under Improper Restriction of Operations within the Bounds of a Memory Buffer. CVSS score: 5.7/10. Published 2017-04-02.
How severe is CVE-2016-8790?: Medium severity. CVSS v3 base score is 5.7 out of 10.