Vulnerability Details : CVE-2016-8209
Improper checks for unusual or exceptional conditions in Brocade NetIron 05.8.00 and later releases up to and including 06.1.00, when the Management Module is continuously scanned on port 22, may allow attackers to cause a denial of service (crash and reload) of the management module.
Published
2017-05-08 18:29:00
Updated
2017-07-08 01:29:02
Vulnerability category: Denial of service
Products affected by CVE-2016-8209
- cpe:2.3:o:brocade:netiron_mlx_series_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:brocade:netiron_cer_series_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:brocade:netiron_ces_series_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:brocade:netiron_xmr_series_firmware:-:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2016-8209
0.47%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 62 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2016-8209
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
5.0
|
MEDIUM | AV:N/AC:L/Au:N/C:N/I:N/A:P |
10.0
|
2.9
|
NIST | |
7.5
|
HIGH | CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
3.9
|
3.6
|
NIST |
CWE ids for CVE-2016-8209
-
The product does not check or incorrectly checks for unusual or exceptional conditions that are not expected to occur frequently during day to day operation of the product.Assigned by: nvd@nist.gov (Primary)
References for CVE-2016-8209
-
http://www.securitytracker.com/id/1038402
Brocade NetIron SSH Port Flaw Lets Remote Users Cause the Target System to Reload - SecurityTracker
-
https://www.brocade.com/content/dam/common/documents/content-types/security-bulletin/brocade-security-advisory-2017-315.htm
Brocade Security AdvisoriesVendor Advisory
Jump to