Vulnerability Details CVE-2016-8802
The security policy processing module in Huawei Secospace USG6300 with software V500R001C20SPC100, V500R001C20SPC101, V500R001C20SPC200; Secospace USG6500 with software V500R001C20SPC100, V500R001C20SPC101, V500R001C20SPC200; Secospace USG6600 with software V500R001C20SPC100, V500R001C20SPC101, V500R001C20SPC200 allows authenticated attackers to setup a specific security policy into the devices, causing a buffer overflow and crashing the system.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 43.5%
CVSS Severity
CVSS v3 Score 6.5
CVSS v2 Score 6.8
References
Products affected by CVE-2016-8802
-
cpe:2.3:h:huawei:secospace_usg6300:-
-
cpe:2.3:h:huawei:secospace_usg6500:-
-
cpe:2.3:h:huawei:secospace_usg6600:-
-
cpe:2.3:o:huawei:secospace_usg6300_firmware:v500r001c20spc100
-
cpe:2.3:o:huawei:secospace_usg6300_firmware:v500r001c20spc101
-
cpe:2.3:o:huawei:secospace_usg6300_firmware:v500r001c20spc200
-
cpe:2.3:o:huawei:secospace_usg6500_firmware:v500r001c20spc100
-
cpe:2.3:o:huawei:secospace_usg6500_firmware:v500r001c20spc101
-
cpe:2.3:o:huawei:secospace_usg6500_firmware:v500r001c20spc200
-
cpe:2.3:o:huawei:secospace_usg6600_firmware:v500r001c20spc100
-
cpe:2.3:o:huawei:secospace_usg6600_firmware:v500r001c20spc101
-
cpe:2.3:o:huawei:secospace_usg6600_firmware:v500r001c20spc200