Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2016-2404

EPSS 0.17% · P37
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2016-2404

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Huawei switches S5700, S6700, S7700, S9700 with software V200R001C00SPC300, V200R002C00SPC100, V200R003C00SPC300, V200R005C00SPC500, V200R006C00; S12700 with software V200R005C00SPC500, V200R006C00; ACU2 with software V200R005C00SPC500, V200R006C00 have a permission control vulnerability. If a switch enables Authentication, Authorization, and Accounting (AAA) for permission control and user permissions are not appropriate, AAA users may obtain the virtual type terminal (VTY) access permission, resulting in privilege escalation.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
多款华为交换机权限许可和访问控制漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
华为S5700等都是中国华为(Huawei)公司的企业级交换机。 多款华为交换机中存在权限控制漏洞。攻击者可利用该漏洞获取VTY(virtual type terminal)的访问权限。以下产品和版本受到影响:华为S5700 V200R001C00SPC300版本,V200R002C00SPC100版本,V200R003C00SPC300版本,V200R005C00SPC500版本,V200R006C00版本;S6700 V200R001C00SPC300版本,V200R002C00SPC100版本,V2
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-S5700, S6700, S7700, S9700,S12700,ACU2,, S5700, S6700, S7700, S9700 V200R001C00SPC300, V200R002C00SPC100, V200R003C00SPC300, V200R005C00SPC500, V200R006C00,,S12700 V200R005C00SPC500, V200R006C00,,ACU2 V200R005C00SPC500, V200R006C00, S5700, S6700, S7700, S9700,S12700,ACU2,, S5700, S6700, S7700, S9700 V200R001C00SPC300, V200R002C00SPC100, V200R003C00SPC300, V200R005C00SPC500, V200R006C00,,S12700 V200R005C00SPC500, V200R006C00,,ACU2 V200R005C00SPC500, V200R006C00, -

II. Public POCs for CVE-2016-2404

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2016-2404

登录查看更多情报信息。

Same Patch Batch · n/a · 2017-04-02 · 176 CVEs total

CVE-2017-2436Apple macOS Sierra IOFireWireAVC 安全漏洞
CVE-2017-2426Apple macOS Sierra iBooks 安全漏洞
CVE-2017-2427Apple macOS Sierra Bluetooth 安全漏洞
CVE-2017-2428多款Apple产品HTTPProtocol 安全漏洞
CVE-2017-2429Apple macOS Sierra FinderKit 安全漏洞
CVE-2017-2430多款Apple产品Audio 缓冲区错误漏洞
CVE-2017-2431Apple macOS Sierra CoreMedia 缓冲区错误漏洞
CVE-2017-2432多款Apple产品ImageIO 缓冲区错误漏洞
CVE-2017-2433Apple iOS和Safari WebKit组件安全漏洞
CVE-2017-2434Apple iOS HomeKit组件安全漏洞
CVE-2017-2435多款Apple产品CoreText 缓冲区错误漏洞
CVE-2017-2441多款Apple产品libc++abi 安全漏洞
CVE-2017-2446多款Apple产品WebKit 安全漏洞
CVE-2017-2445多款Apple产品WebKit 安全漏洞
CVE-2017-2444多款Apple产品CoreGraphics组件安全漏洞
CVE-2017-2443Apple macOS Sierra Intel Graphics Driver 安全漏洞
CVE-2017-2442Apple iOS和Safari WebKit JavaScript Bindings组件安全漏洞
CVE-2017-2439多款Apple产品FontParser 安全漏洞
CVE-2017-2437Apple macOS Sierra IOFireWireAVC 安全漏洞
CVE-2017-2438Apple macOS Sierra AppleRAID 安全漏洞

Showing top 20 of 176 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same vendor: n/a

V. Comments for CVE-2016-2404

No comments yet

Leave a comment