CVE-2016-8106

Description

A Denial of Service in Intel Ethernet Controller's X710/XL710 with Non-Volatile Memory Images before version 5.05 allows a remote attacker to stop the controller from processing network traffic working under certain network use conditions.

Related CPE's

ointelethernet_controller_x710_firmware********

hintelethernet_controller_xl710-am1_sr1zm-*******

hintelethernet_controller_xl710-am2_sr1zk-*******

hintelethernet_controller_xl710-bm2_sllk7-*******

hintelethernet_controller_xl710-bm2_sllk8-*******

hintelethernet_controller_xl710-bm1_sllka-*******

hintelethernet_controller_x710-am2_sr1zq-*******

hintelethernet_controller_x710-bm2_sllkb-*******

hintelethernet_controller_xl710-am1_sr1zn-*******

hintelethernet_controller_xl710-bm1_sllk9-*******

References

https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00063&languageid=en-fr

PatchVendor Advisory

95333

Third Party AdvisoryVDB Entry

https://support.lenovo.com/us/en/product_security/LEN-12029

PatchThird Party Advisory

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05368378

PatchThird Party Advisory

http://www-01.ibm.com/support/docview.wss?uid=swg22002507

1037562

https://security.netapp.com/advisory/ntap-20190731-0001/

CvssV3 impact

BaseSeverity

MEDIUM

ConfidentialityImpact

NONE

AttackComplexity

HIGH

Scope

UNCHANGED

AttackVector

NETWORK

AvailabilityImpact

HIGH

IntegrityImpact

NONE

PrivilegesRequired

NONE

BaseScore

5.9

VectorString

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

Version

3.0

UserInteraction

NONE

CvssV2 impact

Version

2.0

VectorString

AV:N/AC:M/Au:N/C:N/I:N/A:P

AccessVector

NETWORK

AccessComplexity

MEDIUM

Authentication

NONE

ConfidentialityImpact

NONE

IntegrityImpact

NONE

AvailabilityImpact

PARTIAL

BaseScore

4.300000190734863

Created by Yello
About Severity.io