CVE-2016-8797

HIGH

Huawei - Multiple Products - Multiple Vulns

Title source: llm

Description

Huawei AR3200 with software V200R007C00, V200R005C32, V200R005C20; S12700 with software V200R008C00, V200R007C00; S5300 with software V200R008C00, V200R007C00, V200R006C00; S5700 with software V200R008C00, V200R007C00, V200R006C00; S6300 with software V200R008C00, V200R007C00; S6700 with software V200R008C00, V200R007C00; S7700 with software V200R008C00, V200R007C00, V200R006C00; S9300 with software V200R008C00, V200R007C00, V200R006C00; and S9700 with software V200R008C00, V200R007C00, V200R006C00 allow remote attackers to send abnormal Multiprotocol Label Switching (MPLS) packets to cause memory exhaustion.

References (1)

Core 1

Core References

Vendor Advisory x_refsource_confirm

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160608-01-mpls-en

Scores

CVSS v3 7.5

EPSS 0.0028

EPSS Percentile 51.2%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Details

CWE

CWE-399

Status published

Products (25)

huawei/ar3200_firmware v200r005c20

huawei/ar3200_firmware v200r005c32

huawei/ar3200_firmware v200r007c00

huawei/s12700_firmware v200r007c00

huawei/s12700_firmware v200r008c00

huawei/s5300_firmware v200r006c00

huawei/s5300_firmware v200r007c00

huawei/s5300_firmware v200r008c00

huawei/s5700_firmware v200r006c00

huawei/s5700_firmware v200r007c00

... and 15 more

Published Apr 02, 2017

Tracked Since Feb 18, 2026