37 matches found
CVE-2017-17286
Huawei AR120-S V200R005C32, V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR1200 V200R005C32, V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR1200-S V200R005C32, V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR150 V200R005C32, V200R006C10, V200R007C00,...
CVE-2017-17287
The CVE-2017-17287 issue affects a broad set of Huawei devices (AR/AR1200, AR150/AR160/AR200 families, NetEngine16EX, SRG/SRG-like series, etc.) and is tied to an out-of-bounds read triggered by insufficient input validation when processing crafted signatures. The vulnerability allows a remote, u...
CVE-2017-17160
The CVE-2017-17160 issue is a buffer overflow in multiple Huawei enterprise routers (e.g., AR, AR1200/120-S/150/160/200-series, SRG, NetEngine16EX, etc.) caused by incomplete input range checks. An unauthenticated, remote attacker can send malicious IKE packets to the device, potentially writing ...
CVE-2017-17291
Huawei AR120-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR1200 V200R006C10, V200R006C13, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR1200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR150 V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20,...
CVE-2017-15332
CVE-2017-15332 corresponds to a memory-leak vulnerability in the H323 protocol across multiple Huawei products (e.g., AR, ARS, SRG, NetEngine, Secospace USG, etc.). The issue arises from insufficient verification/checks of H323 packets, allowing an unauthenticated, remote attacker to send crafted...
CVE-2017-15331
Huawei AR120-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR1200 V200R006C10, V200R006C13, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR1200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR150 V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20,...
CVE-2017-17299
CVE-2017-17299 affects multiple Huawei router-like devices (e.g., AR120-S/AR1200/AR150/AR160/AR200/AR2200/AR3200/AR3600/AR510, IPS/NIP/NetEngine16EX, and related models) where an unauthenticated, remote attacker can establish via crafted IKEv2 messages due to insufficient input validation. The un...
CVE-2017-17295
Huawei AR120-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR1200 V200R006C10, V200R006C13, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR1200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR150 V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20,...
CVE-2017-17292
Huawei AR120-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR1200 V200R006C10, V200R006C13, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR1200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR150 V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20,...
CVE-2017-17298
CVE-2017-17298 is a buffer overflow vulnerability affecting a wide range of Huawei router and enterprise devices (e.g., AR120-S, AR1200, AR150/AR160/AR200/AR2200 families, ViewPoint, and others) caused by insufficient validation of certificates. An unauthenticated, remote attacker can send specia...
CVE-2017-17295
CVE-2017-17295 describes buffer overflow vulnerabilities in numerous Huawei products caused by insufficient validation of SIP package values. An unauthenticated, remote attacker may send crafted SIP packages to affected devices (e.g., AR120-S, AR1200, AR150/AR200 families and others listed) to tr...
Multiple Huawei products cross-border read vulnerability (CNVD-2018-02555)
Huawei AR series routers, SRG series routing gateways, NetEngine16EX, and other products from Huawei China. The out-of-bounds read vulnerability exists in multiple Huawei products and is due to the device failing to adequately validate input. A remote attacker could exploit this vulnerability by...
Buffer overflow vulnerability in multiple Huawei products (CNVD-2017-37501)
Huawei AR and SRG series enterprise routers are all-in-one routers for small and medium-sized offices or branches of small and medium-sized enterprises; NetEngine16EX is a multi-service network product launched by Huawei, which is mainly applied to convergence and access nodes of backbone network...
Stack overflow
AR120-S with software V200R006C10, V200R007C00, V200R008C20, V200R008C30,AR1200 with software V200R006C10, V200R006C13, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30,AR1200-S with software V200R006C10, V200R007C00, V200R008C20, V200R008C30,AR150 with software V200R006C10,...
CVE-2017-8162
CVE-2017-8162 is a DoS vulnerability affecting Huawei AR/SRG/NetEngine16EX/SMC2.0/other listed products where malformed message processing allows an authenticated remote attacker to send crafted messages, triggering a stack overflow and rendering the service unavailable. Public documents in conne...
CVE-2017-8162
AR120-S with software V200R006C10, V200R007C00, V200R008C20, V200R008C30,AR1200 with software V200R006C10, V200R006C13, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30,AR1200-S with software V200R006C10, V200R007C00, V200R008C20, V200R008C30,AR150 with software V200R006C10,...
Denial of Service Vulnerability in Multiple Huawei Products (CNVD-2017-34448)
The AR Series, SRG Series, and NetEngine16EX Services Routing Gateway are Huawei's all-in-one integrated services gateways for small and medium-sized branch offices and SMBs. Huawei SMC2.0 is a video service management platform. A denial-of-service vulnerability exists in multiple Huawei products...