Vulnerability Details CVE-2016-8597
Buffer overflow in the csp_sfp_recv_fp in csp_sfp.c in the libcsp library v1.4 and earlier allows hostile components with network access to the SFP underlying network layers to execute arbitrary code via specially crafted SFP packets.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.034
EPSS Ranking 86.8%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References
Products affected by CVE-2016-8597
-
cpe:2.3:a:libcsp_project:libcsp:1.0
-
cpe:2.3:a:libcsp_project:libcsp:1.0.1
-
cpe:2.3:a:libcsp_project:libcsp:1.1
-
cpe:2.3:a:libcsp_project:libcsp:1.2
-
cpe:2.3:a:libcsp_project:libcsp:1.3
-
cpe:2.3:a:libcsp_project:libcsp:1.4