CVE-2016-2404: CVE-2016-2404

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2016-2404

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Huawei switches S5700, S6700, S7700, S9700 with software V200R001C00SPC300, V200R002C00SPC100, V200R003C00SPC300, V200R005C00SPC500, V200R006C00; S12700 with software V200R005C00SPC500, V200R006C00; ACU2 with software V200R005C00SPC500, V200R006C00 have a permission control vulnerability. If a switch enables Authentication, Authorization, and Accounting (AAA) for permission control and user permissions are not appropriate, AAA users may obtain the virtual type terminal (VTY) access permission, resulting in privilege escalation.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

多款华为交换机权限许可和访问控制漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

华为S5700等都是中国华为（Huawei）公司的企业级交换机。多款华为交换机中存在权限控制漏洞。攻击者可利用该漏洞获取VTY（virtual type terminal）的访问权限。以下产品和版本受到影响：华为S5700 V200R001C00SPC300版本，V200R002C00SPC100版本，V200R003C00SPC300版本，V200R005C00SPC500版本，V200R006C00版本；S6700 V200R001C00SPC300版本，V200R002C00SPC100版本，V2

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	S5700, S6700, S7700, S9700,S12700,ACU2,, S5700, S6700, S7700, S9700 V200R001C00SPC300, V200R002C00SPC100, V200R003C00SPC300, V200R005C00SPC500, V200R006C00,,S12700 V200R005C00SPC500, V200R006C00,,ACU2 V200R005C00SPC500, V200R006C00,	S5700, S6700, S7700, S9700,S12700,ACU2,, S5700, S6700, S7700, S9700 V200R001C00SPC300, V200R002C00SPC100, V200R003C00SPC300, V200R005C00SPC500, V200R006C00,,S12700 V200R005C00SPC500, V200R006C00,,ACU2 V200R005C00SPC500, V200R006C00,	-

II. Public POCs for CVE-2016-2404

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2016-2404

Please Login to view more intelligence information

IV. Related Vulnerabilities

Same vendor: n/a

V. Comments for CVE-2016-2404

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

I. Basic Information for CVE-2016-2404

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2016-2404

III. Intelligence Information for CVE-2016-2404

IV. Related Vulnerabilities

V. Comments for CVE-2016-2404

Leave a comment