CVE-2016-8597

NONE EPSS 80.8%
Published Oct 28, 20169y ago · Modified Jun 17, 20262w ago
Find Similar
Published Oct 28, 2016 9y ago
Last Modified Jun 17, 2026 2w ago

Description

Buffer overflow in the csp_sfp_recv_fp in csp_sfp.c in the libcsp library v1.4 and earlier allows hostile components with network access to the SFP underlying network layers to execute arbitrary code via specially crafted SFP packets.

Threat Intelligence

EPSS Exploit Probability
80.8% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer Memory Safety

Affected Products 1

VendorProductVersionRange
libcsplibcsp* ≤1.4

References 2

Remediation

  • github.com https://github.com/GomSpace/libcsp/pull/80
    PatchVendor Advisory