CVE-2016-8106

Опубликовано: 09 янв. 2017

Источник: nvd

CVSS3: 5.9

CVSS2: 4.3

EPSS Низкий

Описание

A Denial of Service in Intel Ethernet Controller's X710/XL710 with Non-Volatile Memory Images before version 5.05 allows a remote attacker to stop the controller from processing network traffic working under certain network use conditions.

Ссылки

http://www-01.ibm.com/support/docview.wss?uid=swg22002507
http://www.securityfocus.com/bid/95333
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1037562
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05368378
Patch
Third Party Advisory
https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00063&languageid=en-fr
Patch
Vendor Advisory
https://security.netapp.com/advisory/ntap-20190731-0001/
https://support.lenovo.com/us/en/product_security/LEN-12029
Patch
Third Party Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg22002507
http://www.securityfocus.com/bid/95333
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1037562
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05368378
Patch
Third Party Advisory
https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00063&languageid=en-fr
Patch
Vendor Advisory
https://security.netapp.com/advisory/ntap-20190731-0001/
https://support.lenovo.com/us/en/product_security/LEN-12029
Patch
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:intel:ethernet_controller_x710_firmware:*:*:*:*:*:*:*:*

Версия до 5.04 (включая)

Одно из

cpe:2.3:h:intel:ethernet_controller_x710-am2_sr1zp:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:ethernet_controller_x710-am2_sr1zq:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:ethernet_controller_x710-bm2_sllkb:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:ethernet_controller_x710-bm2_sllkc:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:ethernet_controller_xl710-am1_sr1zm:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:ethernet_controller_xl710-am1_sr1zn:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:ethernet_controller_xl710-am2_sr1zk:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:ethernet_controller_xl710-am2_sr1zl:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:ethernet_controller_xl710-bm1_sllk9:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:ethernet_controller_xl710-bm1_sllka:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:ethernet_controller_xl710-bm2_sllk7:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:ethernet_controller_xl710-bm2_sllk8:-:*:*:*:*:*:*:*

Конфигурация 2

Одновременно

cpe:2.3:o:intel:ethernet_controller_xl710_firmware:*:*:*:*:*:*:*:*

Версия до 5.04 (включая)

Одно из

cpe:2.3:h:intel:eth_converged_ntwk_adptr_x710-da2_ex710da2g1p5:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:eth_converged_ntwk_adptr_x710-da4_ex710da4fhg1p5:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:eth_converged_ntwk_adptr_x710-da4_ex710da4g1p5:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:eth_converged_ntwk_adptr_xl710-qda1_exl710qda1g1p5:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:eth_converged_ntwk_adptr_xl710-qda2_exl710qda2g1p5:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:ethernet_converged_network_adapter_x710-da2_x710da2:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:ethernet_converged_network_adapter_x710-da2_x710da2blk:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:ethernet_converged_network_adapter_x710-da2_x710da2g2p5:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:ethernet_converged_network_adapter_x710-da4_x710da4fh:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:ethernet_converged_network_adapter_x710-da4_x710da4fhblk:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:ethernet_converged_network_adapter_x710-da4_x710da4fhg2p5:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:ethernet_converged_network_adapter_x710-da4_x710da4g2p5:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:ethernet_converged_network_adapter_xl710-qda1_xl710qda1:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:ethernet_converged_network_adapter_xl710-qda1_xl710qda1blk:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:ethernet_converged_network_adapter_xl710-qda1_xl710qda1g2p5:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:ethernet_converged_network_adapter_xl710-qda2_xl710qda2:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:ethernet_converged_network_adapter_xl710-qda2_xl710qda2blk:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:ethernet_converged_network_adapter_xl710-qda2_xl710qda2g2p5:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:ethernet_i\/o_module_xl710-qda1_axx1p40frtiom:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:ethernet_i\/o_module_xl710-qda2_axx2p40frtiom:-:*:*:*:*:*:*:*

Конфигурация 3

Одно из

cpe:2.3:a:hp:ethernet_10gb_2-port_562flr-sfp\+:*:*:*:*:*:*:*:*

cpe:2.3:a:hp:ethernet_10gb_2-port_562sfp\+:*:*:*:*:*:*:*:*

cpe:2.3:a:hp:ethernet_10gb_4-port_563sfp\+:*:*:*:*:*:*:*:*

cpe:2.3:a:hp:proliant_xl260a_g9_server:*:*:*:*:*:*:*:*

Конфигурация 4

Одно из

cpe:2.3:a:lenovo:converged_hx_series:5.05:*:*:*:*:*:*:*

cpe:2.3:a:lenovo:converged_hx5500_appliance:5.05:*:*:*:*:*:*:*

cpe:2.3:a:lenovo:converged_hx5510_appliance:5.05:*:*:*:*:*:*:*

cpe:2.3:a:lenovo:converged_hx7500_appliance:5.05:*:*:*:*:*:*:*

cpe:2.3:a:lenovo:converged_hx7510_appliance:5.05:*:*:*:*:*:*:*

cpe:2.3:a:lenovo:nextscale_nx360_m5:5.05:*:*:*:*:*:*:*

cpe:2.3:a:lenovo:system_x3250_m5:5.05:*:*:*:*:*:*:*

cpe:2.3:a:lenovo:system_x3500_m5:5.05:*:*:*:*:*:*:*

cpe:2.3:a:lenovo:system_x3550_m5:5.05:*:*:*:*:*:*:*

cpe:2.3:a:lenovo:system_x3650_m5:5.05:*:*:*:*:*:*:*

cpe:2.3:a:lenovo:system_x3750_m4:5.05:*:*:*:*:*:*:*

cpe:2.3:a:lenovo:system_x3850_x6:5.05:*:*:*:*:*:*:*

cpe:2.3:a:lenovo:system_x3950_x6:5.05:*:*:*:*:*:*:*

cpe:2.3:a:lenovo:thinkagile_cx2200:5.05:*:*:*:*:*:*:*

cpe:2.3:a:lenovo:thinkagile_cx4200:5.05:*:*:*:*:*:*:*

cpe:2.3:a:lenovo:thinkagile_cx4600:5.05:*:*:*:*:*:*:*

cpe:2.3:a:lenovo:thinkserver_rd350:5.05:*:*:*:*:*:*:*

cpe:2.3:a:lenovo:thinkserver_rd450:5.05:*:*:*:*:*:*:*

cpe:2.3:a:lenovo:thinkserver_rd550:5.05:*:*:*:*:*:*:*

cpe:2.3:a:lenovo:thinkserver_rd650:5.05:*:*:*:*:*:*:*

cpe:2.3:a:lenovo:thinkserver_sd350:5.05:*:*:*:*:*:*:*

cpe:2.3:a:lenovo:thinkserver_td350:5.05:*:*:*:*:*:*:*

EPSS

Процентиль: 85%

0.02584

Низкий

5.9 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-20

Связанные уязвимости

CVE-2016-8106

CVSS3: 5.9

redhat

около 9 лет назад

GHSA-vpfc-r6w9-mf39

CVSS3: 5.9

github

больше 3 лет назад

EPSS

Процентиль: 85%

0.02584

Низкий

5.9 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-20