Lucene search
+L

7 matches found

cnvd
cnvd
added 2018/11/16 12:0 a.m.5 views

Huawei eSace Product Uses Anonymous TLS Algorithmic Sleeve Vulnerability

Huawei eSpace 7950 is a 7950 series IP phone product from Huawei, China. A security vulnerability exists in the Huawei eSace product that uses an anonymous TLS algorithm set. Due to insufficient authentication, an attacker could launch a man-in-the-middle attack to intercept a client's connection...

7.4CVSS7.1AI score0.01108EPSS
Exploits0References1
cnvd
cnvd
added 2018/11/16 12:0 a.m.11 views

Huawei eSpace Product Using Short Secret Key Vulnerability

Huawei eSpace 7950 is a 7950 series IP phone product from Huawei, China. The Huawei eSpace product suffers from a security vulnerability using a short secret key. When a user makes a call using SRTP, an attacker can launch a man-in-the-middle attack to intercept and decrypt the call information...

5.9CVSS5.8AI score0.00778EPSS
Exploits0References1
cnvd
cnvd
added 2018/11/16 12:0 a.m.6 views

Huawei eSpace Product SRTP Logo Display Vulnerability

Huawei eSpace 7950 is a 7950 series IP phone product from Huawei, China. A security vulnerability exists in Huawei eSpace products with SRTP logo display. An attacker can launch a man-in-the-middle attack to intercept messages in a non-secure transmission mode. An attacker who successfully...

7.4CVSS7.1AI score0.00778EPSS
Exploits0References1
osv
osv
added 2018/03/09 5:29 p.m.4 views

CVE-2017-17222

Import Language Package function in Huawei eSpace 7950 V200R003C30; eSpace 8950 V200R003C00; V200R003C30 has a remote code execution vulnerability. An authenticated, remote attacker can craft and send the packets to the affected products after Language Package is uploaded. Due to insufficient...

8.8CVSS6.5AI score0.01271EPSS
Exploits0References1
prion
prion
added 2018/03/09 5:29 p.m.21 views

Remote code execution

Import Signal Tone function in Huawei eSpace 7950 V200R003C30; eSpace 8950 V200R003C00; V200R003C30 has a remote code execution vulnerability. An authenticated, remote attacker can craft and send the packets to the affected products after the Signal Tone is uploaded. Due to insufficient...

6.5CVSS9AI score0.01271EPSS
Exploits0References1Affected Software2
cnvd
cnvd
added 2018/02/01 12:0 a.m.5 views

Huawei eSpace 7950 and 8950 Remote Code Execution Vulnerability

Huawei eSpace 7950 and 8950 are both 7950 and 8950 series IP Phones from Huawei, China. A remote code execution vulnerability exists in the Import Signal Tone feature and Import Language Packet feature of the Huawei eSpace 7950 and 8950 due to the program failing to adequately validate messages. ...

8.8CVSS8.5AI score0.01271EPSS
Exploits0References1
cnvd
cnvd
added 2018/02/01 12:0 a.m.5 views

Huawei eSpace 7950 and 8950 Remote Code Execution Vulnerability (CNVD-2018-02550)

Huawei eSpace 7950 and 8950 are both 7950 and 8950 series IP Phones from Huawei, China. A remote code execution vulnerability exists in the Import Signal Tone feature and Import Language Packet feature of the Huawei eSpace 7950 and 8950 due to the program failing to adequately validate messages. ...

8.8CVSS8.5AI score0.01271EPSS
Exploits0References1
Rows per page
Query Builder