What is the severity of CVE-2016-6900?

CVE-2016-6900 has been rated as a high severity vulnerability, potentially allowing unauthorized access to system resources.

How do I fix CVE-2016-6900?

To fix CVE-2016-6900, update the firmware of affected Huawei server models to the latest version provided by Huawei.

Which Huawei server models are affected by CVE-2016-6900?

The affected Huawei server models include RH1288 V3, RH2288 V3, RH2288H V3, and RH5885 V3 with specific firmware versions.

Is there a workaround for CVE-2016-6900?

There are no known effective workarounds for CVE-2016-6900 other than applying the necessary firmware updates.

What impact does CVE-2016-6900 have on my system's security?

CVE-2016-6900 can lead to unauthorized access and control over the affected Huawei servers, compromising system security.

Vulnerability/
CVE-2016-6900

medium

5.5

CWE

399

7/9/2016

6/8/2024

CVE-2016-6900

First published: Wed Sep 07 2016(Updated: )

The Intelligent Baseboard Management Controller (iBMC) in Huawei RH1288 V3 servers with software before V100R003C00SPC613; RH2288 V3 servers with software before V100R003C00SPC617; RH2288H V3 servers with software before V100R003C00SPC515; RH5885 V3 servers with software before V100R003C10SPC102; and XH620 V3, XH622 V3, and XH628 V3 servers with software before V100R003C00SPC610 allows local users to cause a denial of service (iBMC resource consumption) via unspecified vectors.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Huawei RH1288 V3 Firmware	=v100r003c00
Huawei Rh2288h V3 Server Firmware	=v100r003c00
Huawei RH2288H V3 Firmware	=v100r003c00
Huawei XH620 V3	=v100r003c00
Huawei XH622 V3 Server Firmware	=v100r003c00
Huawei Xh628 V3	=v100r003c00
Huawei RH1288 V3
Huawei RH2288H V3 Server
Huawei Rh2288h V3 Server Firmware
Huawei XH620 V3
Huawei XH622 V3 Server Firmware
Huawei XH628 V3 Server Firmware
Huawei Tecal Rh5885 V3 Firmware	=v100r003c01
Huawei Tecal Rh5885 V3 Firmware

Never miss a vulnerability like this again

Reference Links

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160824-01-server-en

Frequently Asked Questions

What is the severity of CVE-2016-6900?
CVE-2016-6900 has been rated as a high severity vulnerability, potentially allowing unauthorized access to system resources.
How do I fix CVE-2016-6900?
To fix CVE-2016-6900, update the firmware of affected Huawei server models to the latest version provided by Huawei.
Which Huawei server models are affected by CVE-2016-6900?
The affected Huawei server models include RH1288 V3, RH2288 V3, RH2288H V3, and RH5885 V3 with specific firmware versions.
Is there a workaround for CVE-2016-6900?
There are no known effective workarounds for CVE-2016-6900 other than applying the necessary firmware updates.
What impact does CVE-2016-6900 have on my system's security?
CVE-2016-6900 can lead to unauthorized access and control over the affected Huawei servers, compromising system security.

agent/type
collector/mitre-cve
source/MITRE
agent/references
agent/severity
agent/weakness
agent/last-modified-date
agent/author
agent/first-publish-date
agent/description
agent/event
agent/source
agent/softwarecombine
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/huawei
canonical/huawei rh1288 v3 firmware
version/huawei rh1288 v3 firmware/v100r003c00
canonical/huawei rh2288h v3 server firmware
version/huawei rh2288h v3 server firmware/v100r003c00
canonical/huawei rh2288h v3 firmware
version/huawei rh2288h v3 firmware/v100r003c00
canonical/huawei xh620 v3
version/huawei xh620 v3/v100r003c00
canonical/huawei xh622 v3 server firmware
version/huawei xh622 v3 server firmware/v100r003c00
canonical/huawei xh628 v3
version/huawei xh628 v3/v100r003c00
canonical/huawei rh1288 v3
canonical/huawei rh2288h v3 server
canonical/huawei xh628 v3 server firmware
canonical/huawei tecal rh5885 v3 firmware
version/huawei tecal rh5885 v3 firmware/v100r003c01