What is the severity of CVE-2016-2404?

The severity of CVE-2016-2404 is rated as high due to the permission control vulnerability that can lead to unauthorized access.

How do I fix CVE-2016-2404?

To fix CVE-2016-2404, upgrade the affected Huawei switch firmware to a version that is not vulnerable, specifically V200R001C00SPC500 or newer.

What devices are affected by CVE-2016-2404?

Devices affected by CVE-2016-2404 include Huawei S5700, S6700, S7700, S9700, S12700, and ACU2 models running specific older firmware versions.

Is there a workaround for CVE-2016-2404?

There are no known workarounds for CVE-2016-2404, and updating the firmware is the recommended action.

What impact does CVE-2016-2404 have on network security?

CVE-2016-2404 can allow attackers to gain unauthorized access to the network devices, potentially leading to further exploitation and data breaches.

Vulnerability/
CVE-2016-2404

high

7.5

CWE

264

2/4/2017

5/8/2024

CVE-2016-2404

First published: Sun Apr 02 2017(Updated: )

Huawei switches S5700, S6700, S7700, S9700 with software V200R001C00SPC300, V200R002C00SPC100, V200R003C00SPC300, V200R005C00SPC500, V200R006C00; S12700 with software V200R005C00SPC500, V200R006C00; ACU2 with software V200R005C00SPC500, V200R006C00 have a permission control vulnerability. If a switch enables Authentication, Authorization, and Accounting (AAA) for permission control and user permissions are not appropriate, AAA users may obtain the virtual type terminal (VTY) access permission, resulting in privilege escalation.

Credit: psirt@huawei.com

Affected Software	Affected Version	How to fix
Huawei Campus S5700 firmware	=v200r001c00spc300
Huawei Campus S5700 firmware	=v200r002c00spc100
Huawei Campus S5700 firmware	=v200r003c00spc300
Huawei Campus S5700 firmware	=v200r005c00spc500
Huawei Campus S5700 firmware	=v200r006c00
Huawei S5700 Firmware
Huawei 6700EI firmware	=v200r001c00spc300
Huawei 6700EI firmware	=v200r002c00spc100
Huawei 6700EI firmware	=v200r003c00spc300
Huawei 6700EI firmware	=v200r005c00spc500
Huawei 6700EI firmware	=v200r006c00
Huawei S6700 Firmware
Huawei Campus S7700 firmware	=v200r001c00spc300
Huawei Campus S7700 firmware	=v200r002c00spc100
Huawei Campus S7700 firmware	=v200r003c00spc300
Huawei Campus S7700 firmware	=v200r005c00spc500
Huawei Campus S7700 firmware	=v200r006c00
Huawei Campus S7700
Huawei LSW S9700 firmware	=v200r001c00spc300
Huawei LSW S9700 firmware	=v200r002c00spc100
Huawei LSW S9700 firmware	=v200r003c00spc300
Huawei LSW S9700 firmware	=v200r005c00spc500
Huawei LSW S9700 firmware	=v200r006c00
Huawei 9700 Firmware
Huawei S12700 Firmware	=v200r005c00spc500
Huawei S12700 Firmware	=v200r006c00
Huawei S12700 Firmware
Huawei ACU2 firmware	=v200r005c00spc500
Huawei ACU2 firmware	=v200r006c00
Huawei ACU2 firmware

Never miss a vulnerability like this again

Reference Links

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160217-01-switch-en

Frequently Asked Questions

What is the severity of CVE-2016-2404?
The severity of CVE-2016-2404 is rated as high due to the permission control vulnerability that can lead to unauthorized access.
How do I fix CVE-2016-2404?
To fix CVE-2016-2404, upgrade the affected Huawei switch firmware to a version that is not vulnerable, specifically V200R001C00SPC500 or newer.
What devices are affected by CVE-2016-2404?
Devices affected by CVE-2016-2404 include Huawei S5700, S6700, S7700, S9700, S12700, and ACU2 models running specific older firmware versions.
Is there a workaround for CVE-2016-2404?
There are no known workarounds for CVE-2016-2404, and updating the firmware is the recommended action.
What impact does CVE-2016-2404 have on network security?
CVE-2016-2404 can allow attackers to gain unauthorized access to the network devices, potentially leading to further exploitation and data breaches.

agent/type
collector/mitre-cve
source/MITRE
agent/severity
agent/references
agent/last-modified-date
agent/weakness
agent/author
agent/event
agent/description
agent/first-publish-date
agent/source
agent/softwarecombine
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/huawei
canonical/huawei campus s5700 firmware
version/huawei campus s5700 firmware/v200r001c00spc300
version/huawei campus s5700 firmware/v200r002c00spc100
version/huawei campus s5700 firmware/v200r003c00spc300
version/huawei campus s5700 firmware/v200r005c00spc500
version/huawei campus s5700 firmware/v200r006c00
canonical/huawei s5700 firmware
canonical/huawei 6700ei firmware
version/huawei 6700ei firmware/v200r001c00spc300
version/huawei 6700ei firmware/v200r002c00spc100
version/huawei 6700ei firmware/v200r003c00spc300
version/huawei 6700ei firmware/v200r005c00spc500
version/huawei 6700ei firmware/v200r006c00
canonical/huawei s6700 firmware
canonical/huawei campus s7700 firmware
version/huawei campus s7700 firmware/v200r001c00spc300
version/huawei campus s7700 firmware/v200r002c00spc100
version/huawei campus s7700 firmware/v200r003c00spc300
version/huawei campus s7700 firmware/v200r005c00spc500
version/huawei campus s7700 firmware/v200r006c00
canonical/huawei campus s7700
canonical/huawei lsw s9700 firmware
version/huawei lsw s9700 firmware/v200r001c00spc300
version/huawei lsw s9700 firmware/v200r002c00spc100
version/huawei lsw s9700 firmware/v200r003c00spc300
version/huawei lsw s9700 firmware/v200r005c00spc500
version/huawei lsw s9700 firmware/v200r006c00
canonical/huawei 9700 firmware
canonical/huawei s12700 firmware
version/huawei s12700 firmware/v200r005c00spc500
version/huawei s12700 firmware/v200r006c00
canonical/huawei acu2 firmware
version/huawei acu2 firmware/v200r005c00spc500
version/huawei acu2 firmware/v200r006c00