CVE-2016-6900 | Vulnerability Database | Aqua Security

The Intelligent Baseboard Management Controller (iBMC) in Huawei RH1288 V3 servers with software before V100R003C00SPC613; RH2288 V3 servers with software before V100R003C00SPC617; RH2288H V3 servers with software before V100R003C00SPC515; RH5885 V3 servers with software before V100R003C10SPC102; and XH620 V3, XH622 V3, and XH628 V3 servers with software before V100R003C00SPC610 allows local users to cause a denial of service (iBMC resource consumption) via unspecified vectors.

Affected Software

Name	Vendor	Start Version	End Version
Rh1288_v3_server_firmware	Huawei	v100r003c00 (including)	v100r003c00 (including)
Rh2288_v3_server_firmware	Huawei	v100r003c00 (including)	v100r003c00 (including)
Rh2288h_v3_server_firmware	Huawei	v100r003c00 (including)	v100r003c00 (including)
Xh620_v3_server_firmware	Huawei	v100r003c00 (including)	v100r003c00 (including)
Xh622_v3_server_firmware	Huawei	v100r003c00 (including)	v100r003c00 (including)
Xh628_v3_server_firmware	Huawei	v100r003c00 (including)	v100r003c00 (including)

References

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160824-01-server-en

NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-6900
CWE	https://cwe.mitre.org/data/definitions/399.html