What is CVE-2016-8785?

CVE-2016-8785 is a vulnerability found in Huawei S12700, S5700, S7700, and S9700 devices that allows an attacker to send a specially crafted packet to the device.

What is the severity of CVE-2016-8785?

CVE-2016-8785 has a severity rating of 4.3, which is considered medium.

How does CVE-2016-8785 affect Huawei S12700 devices?

CVE-2016-8785 affects Huawei S12700 devices with firmware versions V200R007C00 and V200R008C00.

How can I fix CVE-2016-8785?

To fix CVE-2016-8785, you should update the firmware of affected devices to a version that includes the necessary input validation.

Where can I find more information about CVE-2016-8785?

You can find more information about CVE-2016-8785 on the Huawei PSIRT security advisories page and the SecurityFocus website.

Vulnerability/
CVE-2016-8785

medium

4.3

CWE

9/3/2018

6/8/2024

CVE-2016-8785: Input Validation

First published: Fri Mar 09 2018(Updated: )

Huawei S12700 V200R007C00, V200R008C00, S5700 V200R007C00, S7700 V200R002C00, V200R005C00, V200R006C00, V200R007C00, V200R008C00, S9700 V200R007C00 have an input validation vulnerability. Due to the lack of input validation, an attacker may craft a malformed packet and send it to the device using VRP, causing the device to display additional memory data and possibly leading to sensitive information leakage.

Credit: psirt@huawei.com

Affected Software	Affected Version	How to fix
Huawei S12700 Firmware	=v200r007c00
Huawei S12700 Firmware	=v200r008c00
Huawei S12700
Huawei S5700 Firmware	=v200r007c00
Huawei S5700
Huawei S7700 Firmware	=v200r002c00
Huawei S7700 Firmware	=v200r005c00
Huawei S7700 Firmware	=v200r006c00
Huawei S7700 Firmware	=v200r007c00
Huawei S7700 Firmware	=v200r008c00
Huawei S7700
Huawei S9700 Firmware	=v200r007c00
Huawei S9700

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is CVE-2016-8785?
CVE-2016-8785 is a vulnerability found in Huawei S12700, S5700, S7700, and S9700 devices that allows an attacker to send a specially crafted packet to the device.
What is the severity of CVE-2016-8785?
CVE-2016-8785 has a severity rating of 4.3, which is considered medium.
How does CVE-2016-8785 affect Huawei S12700 devices?
CVE-2016-8785 affects Huawei S12700 devices with firmware versions V200R007C00 and V200R008C00.
How can I fix CVE-2016-8785?
To fix CVE-2016-8785, you should update the firmware of affected devices to a version that includes the necessary input validation.
Where can I find more information about CVE-2016-8785?
You can find more information about CVE-2016-8785 on the Huawei PSIRT security advisories page and the SecurityFocus website.

collector/nvd-index
agent/references
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/severity
agent/author
agent/weakness
agent/softwarecombine
agent/type
agent/description
agent/first-publish-date
agent/tags
agent/event
vendor/huawei
canonical/huawei s12700 firmware
version/huawei s12700 firmware/v200r007c00
version/huawei s12700 firmware/v200r008c00
canonical/huawei s12700
canonical/huawei s5700 firmware
version/huawei s5700 firmware/v200r007c00
canonical/huawei s5700
canonical/huawei s7700 firmware
version/huawei s7700 firmware/v200r002c00
version/huawei s7700 firmware/v200r005c00
version/huawei s7700 firmware/v200r006c00
version/huawei s7700 firmware/v200r007c00
version/huawei s7700 firmware/v200r008c00
canonical/huawei s7700
canonical/huawei s9700 firmware
version/huawei s9700 firmware/v200r007c00
canonical/huawei s9700

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.