CVE-2016-8597

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2016-8597
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2016-8597.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2016-8597
Downstream
Published
2016-10-28T15:59:10.187Z
Modified
2026-04-10T03:53:48.659432Z
Severity
  • 9.8 (Critical) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
[none]
Details

Buffer overflow in the cspsfprecvfp in cspsfp.c in the libcsp library v1.4 and earlier allows hostile components with network access to the SFP underlying network layers to execute arbitrary code via specially crafted SFP packets.

References

Affected packages

Git / github.com/libcsp/libcsp

Affected ranges

Type
GIT
Repo
https://github.com/libcsp/libcsp
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
cd44a6203ffa3d1bfcaeda34705497cfaa5d1044
Database specific 
{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "1.4"
        }
    ]
}

Affected versions

v1.*
v1.0
v1.1
v1.2
v1.3
v1.4

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2016-8597.json"