CVE-2016-6899
7.5
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Exploitability: 3.9 / Impact: 3.6
Source: NVD
Description
The Intelligent Baseboard Management Controller (iBMC) in Huawei RH1288 V3 servers with software before V100R003C00SPC613, RH2288 V3 servers with software before V100R003C00SPC617, RH2288H V3 servers with software before V100R003C00SPC515, RH5885 V3 servers with software before V100R003C10SPC102, and XH620 V3, XH622 V3, and XH628 V3 servers with software before V100R003C00SPC610 might allow remote attackers to decrypt encrypted data and consequently obtain sensitive information by leveraging selection of an insecure SSL encryption algorithm.
Affected (7)
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Version v100r003c01 |
| Running on/with | Platform Versions |
|---|---|
Huawei Rh5885 V3 Server | All versions |
Configuration B
| Vulnerable Software | Affected Versions |
|---|---|
| Version v100r003c00 | |
| Version v100r003c00 | |
| Version v100r003c00 | |
| Version v100r003c00 | |
| Version v100r003c00 | |
| Version v100r003c00 |
| Running on/with | Platform Versions |
|---|---|
Huawei Rh1288 V3 Server | All versions |
Huawei Rh2288 V3 Server | All versions |
Huawei Rh2288h V3 Server | All versions |
Huawei Xh620 V3 Server | All versions |
Huawei Xh622 V3 Server | All versions |
Huawei Xh628 V3 Server | All versions |
Related CWEs
References (4)
Source: cve@mitre.org
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry
Timeline
No history available yet.