CVE-2016-6824

Severity CVSS v4.0:
Pending analysis
Type:
CWE-20 Input Validation
Publication date:
22/09/2016
Last modified:
12/04/2025

Description

Huawei AC6003, AC6005, AC6605, and ACU2 access controllers with software before V200R006C10SPC200 allows remote authenticated users to cause a denial of service (device restart) via crafted CAPWAP packets.

Vulnerable products and versions

CPE From Up to
cpe:2.3:o:huawei:ac6003_firmware:*:*:*:*:*:*:*:* v200r005c10 (including)
cpe:2.3:o:huawei:ac6003_firmware:*:*:*:*:*:*:*:* v200r006c00 (including)
cpe:2.3:o:huawei:ac6005_firmware:*:*:*:*:*:*:*:* v200r005c10 (including)
cpe:2.3:o:huawei:ac6005_firmware:*:*:*:*:*:*:*:* v200r006c00 (including)
cpe:2.3:o:huawei:ac6605_firmware:*:*:*:*:*:*:*:* v200r005c10 (including)
cpe:2.3:o:huawei:ac6605_firmware:v200r006c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:acu2_firmware:*:*:*:*:*:*:*:* v200r005c10 (including)
cpe:2.3:o:huawei:acu2_firmware:*:*:*:*:*:*:*:* v200r006c00 (including)
cpe:2.3:h:huawei:ac6003:-:*:*:*:*:*:*:*
cpe:2.3:h:huawei:ac6005:-:*:*:*:*:*:*:*
cpe:2.3:h:huawei:ac6605:-:*:*:*:*:*:*:*
cpe:2.3:h:huawei:acu2:-:*:*:*:*:*:*:*