CRITICALπŸ‡΅πŸ‡± Wersja polska

CVE-2016-4576

CVSS 9.8v3.0pub. 2016-05-23upd. 2026-05-06

Buffer overflow in the Application Specific Packet Filtering (ASPF) functionality in the Huawei IPS Module, NGFW Module, NIP6300, NIP6600, Secospace USG6300, USG6500, USG6600, USG9500, and AntiDDoS8000 devices with software before V500R001C20SPC100 allows remote attackers to cause a denial of service or execute arbitrary code via a crafted packet, related to "illegitimate parameters."

CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Huawei Ips Module

    HW
    Huawei
    wszystkie wersje
  • Huawei Ips Module Firmware

    OS
    Huawei
    v500r001c00
  • Huawei Ngfw Module

    HW
    Huawei
    wszystkie wersje
  • Huawei Ngfw Module Firmware

    OS
    Huawei
    v500r001c00
  • Huawei Nip6300

    HW
    Huawei
    wszystkie wersje
  • Huawei Nip6300 Firmware

    OS
    Huawei
    v500r001c00
  • Huawei Nip6600

    HW
    Huawei
    wszystkie wersje
  • Huawei Nip6600 Firmware

    OS
    Huawei
    v500r001c00
  • Huawei Secospace Antiddos8000

    HW
    Huawei
    wszystkie wersje
  • Huawei Secospace Antiddos8000 Firmware

    OS
    Huawei
    v500r001c00
  • Huawei Secospace Usg6300

    HW
    Huawei
    wszystkie wersje
  • Huawei Secospace Usg6300 Firmware

    OS
    Huawei
    v500r001c00
  • Huawei Secospace Usg6500

    HW
    Huawei
    wszystkie wersje
  • Huawei Secospace Usg6500 Firmware

    OS
    Huawei
    v500r001c00
  • Huawei Secospace Usg6600

    HW
    Huawei
    wszystkie wersje
  • Huawei Secospace Usg6600 Firmware

    OS
    Huawei
    v500r001c00
  • Huawei Usg9500

    HW
    Huawei
    wszystkie wersje
  • Huawei Usg9500 Firmware

    OS
    Huawei
    v500r001c00
πŸ”΅
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
RCEDoSMemory
CWE
References

Related vulnerabilities

CVE-2020-9099CRITICAL9.8ten sam produkt

Huawei products IPS Module; NGFW Module; NIP6300; NIP6600; NIP6800; Secospace USG6300; Secospace USG6500; Seco...

CVE-2021-37129HIGH7.5ten sam produkt

There is an out of bounds write vulnerability in some Huawei products. The vulnerability is caused by a functi...

CVE-2021-22309HIGH7.5ten sam produkt

There is insecure algorithm vulnerability in Huawei products. A module uses less random input in a secure mech...

CVE-2020-9213HIGH7.5ten sam produkt

There is a denial of service vulnerability in some huawei products. In specific scenarios, due to the improper...

CVE-2021-22320HIGH7.5ten sam produkt

There is a denial of service vulnerability in Huawei products. A module cannot deal with specific messages cor...

CVE-2016-4576 β€” Huawei β€” Ips Module β€” CRITICAL β€” CVSS 9.8 | CVEbaza.pl