CVE-2016-6838
Published on: 09/07/2016 12:00:00 AM UTC
Last Modified on: 03/23/2021 11:27:10 PM UTC
Certain versions of Ch121 V3 Server from Huawei contain the following vulnerability:
Huawei X6800 and XH620 V3 servers with software before V100R003C00SPC606, RH1288 V3 servers with software before V100R003C00SPC613, RH2288 V3 servers with software before V100R003C00SPC617, CH140 V3 and CH226 V3 servers with software before V100R001C00SPC122, CH220 V3 servers with software before V100R001C00SPC201, and CH121 V3 and CH222 V3 servers with software before V100R001C00SPC202 might allow remote attackers to decrypt encrypted data and consequently obtain sensitive information by leveraging selection of an insecure SSH encryption algorithm.
- CVE-2016-6838 has been assigned by
[email protected] to track the vulnerability - currently rated as HIGH severity.
CVSS3 Score: 7.5 - HIGH
Attack Vector ⓘ |
Attack Complexity |
Privileges Required |
User Interaction |
|
---|---|---|---|---|
NETWORK | LOW | NONE | NONE | |
Scope | Confidentiality Impact |
Integrity Impact |
Availability Impact |
|
UNCHANGED | HIGH | NONE | NONE |
CVSS2 Score: 4.3 - MEDIUM
Access Vector ⓘ |
Access Complexity |
Authentication |
---|---|---|
NETWORK | MEDIUM | NONE |
Confidentiality Impact |
Integrity Impact |
Availability Impact |
PARTIAL | NONE | NONE |
CVE References
Description | Tags ⓘ | Link |
---|---|---|
* | Vendor Advisory www.huawei.com text/html |
![]() |
Multiple Huawei Products Information Disclosure Vulnerability | Third Party Advisory VDB Entry cve.report (archive) text/html |
![]() |
There are currently no QIDs associated with this CVE
Known Affected Configurations (CPE V2.3)
Type | Vendor | Product | Version | Update | Edition | Language |
---|---|---|---|---|---|---|
Hardware | Huawei | Ch121 V3 Server | - | All | All | All |
Hardware | Huawei | Ch121 V3 Server | - | All | All | All |
Operating System | Huawei | Ch121 V3 Server Firmware | v100r001c00 | All | All | All |
Operating System | Huawei | Ch121 V3 Server Firmware | v100r001c00 | All | All | All |
Hardware | Huawei | Ch140 V3 Server | - | All | All | All |
Hardware | Huawei | Ch140 V3 Server | - | All | All | All |
Operating System | Huawei | Ch140 V3 Server Firmware | v100r001c00 | All | All | All |
Operating System | Huawei | Ch140 V3 Server Firmware | v100r001c00 | All | All | All |
Hardware | Huawei | Ch220 V3 Server | - | All | All | All |
Hardware | Huawei | Ch220 V3 Server | - | All | All | All |
Operating System | Huawei | Ch220 V3 Server Firmware | v100r001c00 | All | All | All |
Operating System | Huawei | Ch220 V3 Server Firmware | v100r001c00 | All | All | All |
Hardware | Huawei | Ch222 V3 Server | - | All | All | All |
Hardware | Huawei | Ch222 V3 Server | - | All | All | All |
Operating System | Huawei | Ch222 V3 Server Firmware | v100r001c00 | All | All | All |
Operating System | Huawei | Ch222 V3 Server Firmware | v100r001c00 | All | All | All |
Hardware | Huawei | Ch226 V3 Server | - | All | All | All |
Hardware | Huawei | Ch226 V3 Server | - | All | All | All |
Operating System | Huawei | Ch226 V3 Server Firmware | v100r001c00 | All | All | All |
Operating System | Huawei | Ch226 V3 Server Firmware | v100r001c00 | All | All | All |
Hardware | Huawei | Rh1288 V3 Server | - | All | All | All |
Hardware | Huawei | Rh1288 V3 Server | - | All | All | All |
Operating System | Huawei | Rh1288 V3 Server Firmware | v100r003c00 | All | All | All |
Operating System | Huawei | Rh1288 V3 Server Firmware | v100r003c00 | All | All | All |
Hardware | Huawei | Rh2288 V3 Server | - | All | All | All |
Hardware | Huawei | Rh2288 V3 Server | - | All | All | All |
Operating System | Huawei | Rh2288 V3 Server Firmware | v100r003c00 | All | All | All |
Operating System | Huawei | Rh2288 V3 Server Firmware | v100r003c00 | All | All | All |
Hardware | Huawei | X6800 V3 Server | - | All | All | All |
Hardware | Huawei | X6800 V3 Server | - | All | All | All |
Operating System | Huawei | X6800 V3 Server Firmware | v100r003c00 | All | All | All |
Operating System | Huawei | X6800 V3 Server Firmware | v100r003c00 | All | All | All |
Hardware | Huawei | Xh620 V3 Server | - | All | All | All |
Hardware | Huawei | Xh620 V3 Server | - | All | All | All |
Operating System | Huawei | Xh620 V3 Server Firmware | v100r003c00 | All | All | All |
Operating System | Huawei | Xh620 V3 Server Firmware | v100r003c00 | All | All | All |
- cpe:2.3:h:huawei:ch121_v3_server:-:*:*:*:*:*:*:*:
- cpe:2.3:h:huawei:ch121_v3_server:-:*:*:*:*:*:*:*:
- cpe:2.3:o:huawei:ch121_v3_server_firmware:v100r001c00:*:*:*:*:*:*:*:
- cpe:2.3:o:huawei:ch121_v3_server_firmware:v100r001c00:*:*:*:*:*:*:*:
- cpe:2.3:h:huawei:ch140_v3_server:-:*:*:*:*:*:*:*:
- cpe:2.3:h:huawei:ch140_v3_server:-:*:*:*:*:*:*:*:
- cpe:2.3:o:huawei:ch140_v3_server_firmware:v100r001c00:*:*:*:*:*:*:*:
- cpe:2.3:o:huawei:ch140_v3_server_firmware:v100r001c00:*:*:*:*:*:*:*:
- cpe:2.3:h:huawei:ch220_v3_server:-:*:*:*:*:*:*:*:
- cpe:2.3:h:huawei:ch220_v3_server:-:*:*:*:*:*:*:*:
- cpe:2.3:o:huawei:ch220_v3_server_firmware:v100r001c00:*:*:*:*:*:*:*:
- cpe:2.3:o:huawei:ch220_v3_server_firmware:v100r001c00:*:*:*:*:*:*:*:
- cpe:2.3:h:huawei:ch222_v3_server:-:*:*:*:*:*:*:*:
- cpe:2.3:h:huawei:ch222_v3_server:-:*:*:*:*:*:*:*:
- cpe:2.3:o:huawei:ch222_v3_server_firmware:v100r001c00:*:*:*:*:*:*:*:
- cpe:2.3:o:huawei:ch222_v3_server_firmware:v100r001c00:*:*:*:*:*:*:*:
- cpe:2.3:h:huawei:ch226_v3_server:-:*:*:*:*:*:*:*:
- cpe:2.3:h:huawei:ch226_v3_server:-:*:*:*:*:*:*:*:
- cpe:2.3:o:huawei:ch226_v3_server_firmware:v100r001c00:*:*:*:*:*:*:*:
- cpe:2.3:o:huawei:ch226_v3_server_firmware:v100r001c00:*:*:*:*:*:*:*:
- cpe:2.3:h:huawei:rh1288_v3_server:-:*:*:*:*:*:*:*:
- cpe:2.3:h:huawei:rh1288_v3_server:-:*:*:*:*:*:*:*:
- cpe:2.3:o:huawei:rh1288_v3_server_firmware:v100r003c00:*:*:*:*:*:*:*:
- cpe:2.3:o:huawei:rh1288_v3_server_firmware:v100r003c00:*:*:*:*:*:*:*:
- cpe:2.3:h:huawei:rh2288_v3_server:-:*:*:*:*:*:*:*:
- cpe:2.3:h:huawei:rh2288_v3_server:-:*:*:*:*:*:*:*:
- cpe:2.3:o:huawei:rh2288_v3_server_firmware:v100r003c00:*:*:*:*:*:*:*:
- cpe:2.3:o:huawei:rh2288_v3_server_firmware:v100r003c00:*:*:*:*:*:*:*:
- cpe:2.3:h:huawei:x6800_v3_server:-:*:*:*:*:*:*:*:
- cpe:2.3:h:huawei:x6800_v3_server:-:*:*:*:*:*:*:*:
- cpe:2.3:o:huawei:x6800_v3_server_firmware:v100r003c00:*:*:*:*:*:*:*:
- cpe:2.3:o:huawei:x6800_v3_server_firmware:v100r003c00:*:*:*:*:*:*:*:
- cpe:2.3:h:huawei:xh620_v3_server:-:*:*:*:*:*:*:*:
- cpe:2.3:h:huawei:xh620_v3_server:-:*:*:*:*:*:*:*:
- cpe:2.3:o:huawei:xh620_v3_server_firmware:v100r003c00:*:*:*:*:*:*:*:
- cpe:2.3:o:huawei:xh620_v3_server_firmware:v100r003c00:*:*:*:*:*:*:*:
No vendor comments have been submitted for this CVE