Lucene search
K

337 matches found

CNNVD
CNNVD
added 2021/05/21 12:0 a.m.5 views

Huawei IPS Module 安全漏洞

Huawei IPS Module is an Intrusion Prevention System IPS module from Huawei of China.NGFW Module is a firewall product.Secospace USG6300 is a next-generation firewall product.Secospace USG6600 is a next-generation firewall product. Multiple Huawei products are vulnerable to memory leaks, which can...

4.9CVSS5.4AI score0.00588EPSS
Exploits0References2
OSV
OSV
added 2021/04/08 7:15 p.m.4 views

CVE-2021-22312

There is a memory leak vulnerability in some Huawei products. An authenticated remote attacker may exploit this vulnerability by sending specific message to the affected product. Due to not release the allocated memory properly, successful exploit may cause some service abnormal. Affected product...

6.5CVSS6.6AI score0.00825EPSS
Exploits0References1
Prion
Prion
added 2021/04/08 7:15 p.m.20 views

Memory corruption

There is a memory leak vulnerability in some Huawei products. An authenticated remote attacker may exploit this vulnerability by sending specific message to the affected product. Due to not release the allocated memory properly, successful exploit may cause some service abnormal. Affected product...

4CVSS6.3AI score0.00825EPSS
Exploits0References1Affected Software12
Cvelist
Cvelist
added 2021/04/08 6:18 p.m.18 views

CVE-2021-22312

There is a memory leak vulnerability in some Huawei products. An authenticated remote attacker may exploit this vulnerability by sending specific message to the affected product. Due to not release the allocated memory properly, successful exploit may cause some service abnormal. Affected product...

6.6AI score0.00825EPSS
Exploits0References1
CVE
CVE
added 2021/04/08 6:18 p.m.85 views

CVE-2021-22312

CVE-2021-22312 is a memory-leak vulnerability in Huawei devices (IPS Module, NGFW Module, Secospace USG6300/USG6500/USG6600/USG9500). The root cause is improper memory release after handling certain messages, allowing an authenticated remote attacker to trigger a leak by sending a specific messag...

6.5CVSS6.4AI score0.00825EPSS
Exploits0References1Affected Software1
OpenVAS
OpenVAS
added 2021/03/29 12:0 a.m.17 views

Huawei Data Communication: Use After Free Vulnerability in Huawei Product (huawei-sa-20210210-01-uaf)

There is a use-after-free vulnerability in Huawei products. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...

5.3CVSS5.5AI score0.00715EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2021/03/29 12:0 a.m.24 views

Huawei Data Communication: Denial of Service Vulnerability in Some Products (huawei-sa-20210210-02-dos)

There is a denial of service vulnerability in some huawei products. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...

7.5CVSS7AI score0.00727EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2021/03/29 12:0 a.m.18 views

Huawei Data Communication: Information Leakage Vulnerability in Some Huawei Products (huawei-sa-20210203-01-plaintextlog)

There is an information leakage vulnerability in some huawei products. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...

4.4CVSS4.8AI score0.00186EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2021/03/29 12:0 a.m.20 views

Huawei Data Communication: Denial of Service Vulnerability in Huawei Product (huawei-sa-20210210-03-dos)

There is a denial of service vulnerability in Huawei products. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software...

7.5CVSS7.5AI score0.00727EPSS
Exploits0References1
NVD
NVD
added 2021/03/22 8:15 p.m.61 views

CVE-2021-22321

There is a use-after-free vulnerability in a Huawei product. A module cannot deal with specific operations in special scenarios. Attackers can exploit this vulnerability by performing malicious operations. This can cause memory use-after-free, compromising normal service. Affected product include...

5.3CVSS0.00715EPSS
Exploits0References1
Prion
Prion
added 2021/03/22 8:15 p.m.31 views

Design/Logic Flaw

There is a use-after-free vulnerability in a Huawei product. A module cannot deal with specific operations in special scenarios. Attackers can exploit this vulnerability by performing malicious operations. This can cause memory use-after-free, compromising normal service. Affected product include...

5CVSS5.3AI score0.00715EPSS
Exploits0References1Affected Software14
NVD
NVD
added 2021/03/22 7:15 p.m.45 views

CVE-2021-22320

There is a denial of service vulnerability in Huawei products. A module cannot deal with specific messages correctly. Attackers can exploit this vulnerability by sending malicious messages to an affected module. This can lead to denial of service. Affected product include some versions of IPS...

7.5CVSS0.00727EPSS
Exploits0References1
Prion
Prion
added 2021/03/22 7:15 p.m.21 views

Information disclosure

There is an information leakage vulnerability in some huawei products. Due to the properly storage of specific information in the log file, the attacker can obtain the information when a user logs in to the device. Successful exploit may cause an information leak. Affected product versions includ...

2.1CVSS4.5AI score0.00186EPSS
Exploits0References1Affected Software6
Prion
Prion
added 2021/03/22 7:15 p.m.28 views

Denial of service

There is a denial of service vulnerability in Huawei products. A module cannot deal with specific messages correctly. Attackers can exploit this vulnerability by sending malicious messages to an affected module. This can lead to denial of service. Affected product include some versions of IPS...

5CVSS7.3AI score0.00727EPSS
Exploits0References1Affected Software7
CVE
CVE
added 2021/03/22 7:3 p.m.81 views

CVE-2021-22321

CVE-2021-22321 is a Huawei use-after-free vulnerability affecting multiple Huawei network devices (e.g., S5700, S6700, S7700, S9700, NIP6x00, Secospace USG6xxx, USG9500). The underlying issue is memory mismanagement in a module that cannot handle specific operations in certain scenarios, leading ...

5.3CVSS5.3AI score0.00715EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/03/22 7:3 p.m.35 views

CVE-2021-22321

There is a use-after-free vulnerability in a Huawei product. A module cannot deal with specific operations in special scenarios. Attackers can exploit this vulnerability by performing malicious operations. This can cause memory use-after-free, compromising normal service. Affected product include...

5.6AI score0.00715EPSS
Exploits0References1
Cvelist
Cvelist
added 2021/03/22 6:41 p.m.36 views

CVE-2021-22320

There is a denial of service vulnerability in Huawei products. A module cannot deal with specific messages correctly. Attackers can exploit this vulnerability by sending malicious messages to an affected module. This can lead to denial of service. Affected product include some versions of IPS...

7.6AI score0.00727EPSS
Exploits0References1
CVE
CVE
added 2021/03/22 6:41 p.m.92 views

CVE-2021-22320

Summary of CVE-2021-22320 (Huawei) A denial-of-service vulnerability exists in several Huawei network devices where a module fails to properly handle certain messages, allowing an attacker to trigger a DoS by sending malicious messages. Affected products include IPS Module, NGFW Module, NIP6600, ...

7.5CVSS7.3AI score0.00727EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2021/03/22 6:38 p.m.71 views

CVE-2021-22310

CVE-2021-22310 describes an information-leakage vulnerability in multiple Huawei products caused by improper storage of sensitive data in log files. When a user logs in, an attacker may access logged information. Affected products and versions include Huawei NIP6300 (V500R001C00/C20/C30), NIP6600...

4.4CVSS4.5AI score0.00186EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/03/22 6:38 p.m.23 views

CVE-2021-22310

There is an information leakage vulnerability in some huawei products. Due to the properly storage of specific information in the log file, the attacker can obtain the information when a user logs in to the device. Successful exploit may cause an information leak. Affected product versions includ...

4.8AI score0.00186EPSS
Exploits0References1
Rows per page
Query Builder