How severe is CVE-2016-8367?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 5.3 out of 10.

What type of vulnerability is CVE-2016-8367?

This is classified as CWE-400, which is a common weakness in software security.

CVE-2016-8367

MEDIUM Year: 2016

CVSS v3 Score

5.3

Medium

CVSS v2 Score

5.0

Medium

Weakness Type

CWE-400

View all →

Vulnerability Description

An issue was discovered in Schneider Electric Magelis HMI Magelis GTO Advanced Optimum Panels, all versions, Magelis GTU Universal Panel, all versions, Magelis STO5xx and STU Small panels, all versions, Magelis XBT GH Advanced Hand-held Panels, all versions, Magelis XBT GK Advanced Touchscreen Panels with Keyboard, all versions, Magelis XBT GT Advanced Touchscreen Panels, all versions, and Magelis XBT GTW Advanced Open Touchscreen Panels (Windows XPe). An attacker can open multiple connections to a targeted web server and keep connections open preventing new connections from being made, rendering the web server unavailable during an attack.

CVE-2016-0747

MEDIUM

CVSS:5.3(Medium)

The resolver in nginx before 1.8.1 and 1.9.x before 1.9.10 does not properly limit CNAME resolution, which allows remote attackers to cause a denial of service (worker process resource consumption) vi...

CWE-4002016

CVE-2017-1000359

MEDIUM

CVSS:5.3(Medium)

Java out of memory error and significant increase in resource consumption. Component: OpenDaylight odl-mdsal-xsql is vulnerable to this flaw. Version: The tested versions are OpenDaylight 3.3 and 4.0.

CWE-4002017

CVE-2017-10621

MEDIUM

CVSS:5.3(Medium)

A denial of service vulnerability in telnetd service on Juniper Networks Junos OS allows remote unauthenticated attackers to cause a denial of service. Affected Junos OS releases are: 12.1X46 prior to...

CWE-4002017

CVE-2017-12093

MEDIUM

CVSS:5.3(Medium)

An exploitable insufficient resource pool vulnerability exists in the session communication functionality of Allen Bradley Micrologix 1400 Series B Firmware 21.2 and before. A specially crafted stream...

CWE-4002017

CVE-2017-15345

MEDIUM

CVSS:5.3(Medium)

Huawei Smartphones with software LON-L29DC721B186 have a denial of service vulnerability. An attacker could make an loop exit condition that cannot be reached by sending the crafted 3GPP message. Succ...

CWE-4002017

CVE-2017-16137

MEDIUM

CVSS:5.3(Medium)

The debug module is vulnerable to regular expression denial of service when untrusted user input is passed into the o formatter. It takes around 50k characters to block for 2 seconds making this a low...

CWE-4002017

CVE-2016-8367

Vulnerability Description

Related Vulnerabilities

CVE-2016-0747

CVE-2017-1000359

CVE-2017-10621

CVE-2017-12093

CVE-2017-15345

CVE-2017-16137