← Back

CVE-2016-8784

nvd nist
Published: Mar 9, 2018Modified: Nov 21, 2024

JSON object

Loading...
4.3
Vector
CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Exploitability: 2.8 / Impact: 1.4
Source: NVD

Description

Huawei CloudEngine 12800 V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00 have a memory leak vulnerability. An unauthenticated attacker may send specific Label Distribution Protocol (LDP) packets to the devices. When the values of some parameters in the packet are abnormal, the LDP processing module does not release the memory to handle the packet, resulting in memory leak.

Affected (5)

Huawei
1 product
Cloudengine 12800 Firmware
Configuration A
5 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Huawei
Cloudengine 12800 Firmware
Version v100r003c00
Cloudengine 12800 Firmware
Version v100r003c10
Cloudengine 12800 Firmware
Version v100r005c00
Cloudengine 12800 Firmware
Version v100r005c10
Cloudengine 12800 Firmware
Version v100r006c00
Running on/withPlatform Versions
Huawei
Cloudengine 12800
All versions

Related CWEs

CWE-399
CWE-399

References (4)

Source: psirt@huawei.com
Vendor Advisory
Source: psirt@huawei.com
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry

Timeline

No history available yet.