Strix
26.1K

CVE-2016-8773

UnknownEPSS 0.92%

Last modified

CVE-2016-8773 is a vulnerability of currently unknown severity. Huawei S5300 with software V200R003C00, V200R007C00, V200R008C00, V200R009C00; S5700 with software V200R001C00, V200R002C00, V200R003C00, V200R005C00, V200R005C03, V200R007C00, V200R008C00, V200R009C00; S6300 with software V200R003C00, V200R005C00, V200R008C00, V200R009C00; S6700 with software V200R001C00, V200R001C01, V200R002C00, V200R003C00, V200R005C00, V200R008C00, V200R009C00; S7700 with software V200R007C00, V200R008C00, V200R009C00; S9300 with software V200R007C00, V200R008C00, V200R009C00; S9700 with software V200R007C00, V200R008C00, V200R009C00; and S12700 with software V200R007C00, V200R007C01, V200R008C00, V200R009C00 allow the attacker to cause a denial of service condition by sending malformed MPLS packets.. EPSS estimates a 0.92% chance of exploitation in the next 30 days.

Description

Huawei S5300 with software V200R003C00, V200R007C00, V200R008C00, V200R009C00; S5700 with software V200R001C00, V200R002C00, V200R003C00, V200R005C00, V200R005C03, V200R007C00, V200R008C00, V200R009C00; S6300 with software V200R003C00, V200R005C00, V200R008C00, V200R009C00; S6700 with software V200R001C00, V200R001C01, V200R002C00, V200R003C00, V200R005C00, V200R008C00, V200R009C00; S7700 with software V200R007C00, V200R008C00, V200R009C00; S9300 with software V200R007C00, V200R008C00, V200R009C00; S9700 with software V200R007C00, V200R008C00, V200R009C00; and S12700 with software V200R007C00, V200R007C01, V200R008C00, V200R009C00 allow the attacker to cause a denial of service condition by sending malformed MPLS packets.

Metrics

EPSS Probability
0.92%

55.6th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersions
HuaweiS12700 Firmwarev200r007c00
HuaweiS12700 Firmwarev200r007c01
HuaweiS12700 Firmwarev200r008c00
HuaweiS12700 Firmwarev200r009c00
HuaweiS5300 Firmwarev200r003c00
HuaweiS5300 Firmwarev200r007c00
HuaweiS5300 Firmwarev200r008c00
HuaweiS5300 Firmwarev200r009c00
HuaweiS5700 Firmwarev200r001c00
HuaweiS5700 Firmwarev200r002c00
HuaweiS5700 Firmwarev200r003c00
HuaweiS5700 Firmwarev200r005c00
HuaweiS5700 Firmwarev200r005c03
HuaweiS5700 Firmwarev200r007c00
HuaweiS5700 Firmwarev200r008c00
HuaweiS5700 Firmwarev200r009c00
HuaweiS6300 Firmwarev200r003c00
HuaweiS6300 Firmwarev200r005c00
HuaweiS6300 Firmwarev200r008c00
HuaweiS6300 Firmwarev200r009c00
HuaweiS6700 Firmwarev200r001c00
HuaweiS6700 Firmwarev200r001c01
HuaweiS6700 Firmwarev200r002c00
HuaweiS6700 Firmwarev200r003c00
HuaweiS6700 Firmwarev200r005c00
HuaweiS6700 Firmwarev200r007c00
HuaweiS6700 Firmwarev200r008c00
HuaweiS6700 Firmwarev200r009c00
HuaweiS7700 Firmwarev200r007c00
HuaweiS7700 Firmwarev200r008c00
HuaweiS7700 Firmwarev200r009c00
HuaweiS9300 Firmwarev200r007c00
HuaweiS9300 Firmwarev200r008c00
HuaweiS9300 Firmwarev200r009c00
HuaweiS9700 Firmwarev200r007c00
HuaweiS9700 Firmwarev200r008c00
HuaweiS9700 Firmwarev200r009c00

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2016-8773?
Huawei S5300 with software V200R003C00, V200R007C00, V200R008C00, V200R009C00; S5700 with software V200R001C00, V200R002C00, V200R003C00, V200R005C00, V200R005C03, V200R007C00, V200R008C00, V200R009C00; S6300 with software V200R003C00, V200R005C00, V200R008C00, V200R009C00; S6700 with software V200R001C00, V200R001C01, V200R002C00, V200R003C00, V200R005C00, V200R008C00, V200R009C00; S7700 with software V200R007C00, V200R008C00, V200R009C00; S9300 with software V200R007C00, V200R008C00, V200R009C00; S9700 with software V200R007C00, V200R008C00, V200R009C00; and S12700 with software V200R007C00, V200R007C01, V200R008C00, V200R009C00 allow the attacker to cause a denial of service condition by sending malformed MPLS packets.
How severe is CVE-2016-8773?
Severity scoring for CVE-2016-8773 is pending analysis. The EPSS model estimates a 0.92% probability of exploitation in the next 30 days.
How do I fix CVE-2016-8773?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2016-8773?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST