337 matches found
Huawei IPS Module 安全漏洞
Huawei IPS Module is an Intrusion Prevention System IPS module from Huawei of China.NGFW Module is a firewall product.Secospace USG6300 is a next-generation firewall product.Secospace USG6600 is a next-generation firewall product. Multiple Huawei products are vulnerable to memory leaks, which can...
CVE-2021-22312
There is a memory leak vulnerability in some Huawei products. An authenticated remote attacker may exploit this vulnerability by sending specific message to the affected product. Due to not release the allocated memory properly, successful exploit may cause some service abnormal. Affected product...
Memory corruption
There is a memory leak vulnerability in some Huawei products. An authenticated remote attacker may exploit this vulnerability by sending specific message to the affected product. Due to not release the allocated memory properly, successful exploit may cause some service abnormal. Affected product...
CVE-2021-22312
There is a memory leak vulnerability in some Huawei products. An authenticated remote attacker may exploit this vulnerability by sending specific message to the affected product. Due to not release the allocated memory properly, successful exploit may cause some service abnormal. Affected product...
CVE-2021-22312
CVE-2021-22312 is a memory-leak vulnerability in Huawei devices (IPS Module, NGFW Module, Secospace USG6300/USG6500/USG6600/USG9500). The root cause is improper memory release after handling certain messages, allowing an authenticated remote attacker to trigger a leak by sending a specific messag...
Huawei Data Communication: Use After Free Vulnerability in Huawei Product (huawei-sa-20210210-01-uaf)
There is a use-after-free vulnerability in Huawei products. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...
Huawei Data Communication: Denial of Service Vulnerability in Some Products (huawei-sa-20210210-02-dos)
There is a denial of service vulnerability in some huawei products. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...
Huawei Data Communication: Information Leakage Vulnerability in Some Huawei Products (huawei-sa-20210203-01-plaintextlog)
There is an information leakage vulnerability in some huawei products. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...
Huawei Data Communication: Denial of Service Vulnerability in Huawei Product (huawei-sa-20210210-03-dos)
There is a denial of service vulnerability in Huawei products. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software...
CVE-2021-22321
There is a use-after-free vulnerability in a Huawei product. A module cannot deal with specific operations in special scenarios. Attackers can exploit this vulnerability by performing malicious operations. This can cause memory use-after-free, compromising normal service. Affected product include...
Design/Logic Flaw
There is a use-after-free vulnerability in a Huawei product. A module cannot deal with specific operations in special scenarios. Attackers can exploit this vulnerability by performing malicious operations. This can cause memory use-after-free, compromising normal service. Affected product include...
CVE-2021-22320
There is a denial of service vulnerability in Huawei products. A module cannot deal with specific messages correctly. Attackers can exploit this vulnerability by sending malicious messages to an affected module. This can lead to denial of service. Affected product include some versions of IPS...
Information disclosure
There is an information leakage vulnerability in some huawei products. Due to the properly storage of specific information in the log file, the attacker can obtain the information when a user logs in to the device. Successful exploit may cause an information leak. Affected product versions includ...
Denial of service
There is a denial of service vulnerability in Huawei products. A module cannot deal with specific messages correctly. Attackers can exploit this vulnerability by sending malicious messages to an affected module. This can lead to denial of service. Affected product include some versions of IPS...
CVE-2021-22321
CVE-2021-22321 is a Huawei use-after-free vulnerability affecting multiple Huawei network devices (e.g., S5700, S6700, S7700, S9700, NIP6x00, Secospace USG6xxx, USG9500). The underlying issue is memory mismanagement in a module that cannot handle specific operations in certain scenarios, leading ...
CVE-2021-22321
There is a use-after-free vulnerability in a Huawei product. A module cannot deal with specific operations in special scenarios. Attackers can exploit this vulnerability by performing malicious operations. This can cause memory use-after-free, compromising normal service. Affected product include...
CVE-2021-22320
There is a denial of service vulnerability in Huawei products. A module cannot deal with specific messages correctly. Attackers can exploit this vulnerability by sending malicious messages to an affected module. This can lead to denial of service. Affected product include some versions of IPS...
CVE-2021-22320
Summary of CVE-2021-22320 (Huawei) A denial-of-service vulnerability exists in several Huawei network devices where a module fails to properly handle certain messages, allowing an attacker to trigger a DoS by sending malicious messages. Affected products include IPS Module, NGFW Module, NIP6600, ...
CVE-2021-22310
CVE-2021-22310 describes an information-leakage vulnerability in multiple Huawei products caused by improper storage of sensitive data in log files. When a user logs in, an attacker may access logged information. Affected products and versions include Huawei NIP6300 (V500R001C00/C20/C30), NIP6600...
CVE-2021-22310
There is an information leakage vulnerability in some huawei products. Due to the properly storage of specific information in the log file, the attacker can obtain the information when a user logs in to the device. Successful exploit may cause an information leak. Affected product versions includ...