17 matches found
CVE-2020-21883
Unibox U-50 2.4 and UniBox Enterprise Series 2.4 and UniBox Campus Series 2.4 contain a OS command injection vulnerability in /tools/ping, which can leads to complete device takeover...
CVE-2020-21883
Unibox U-50 2.4 and UniBox Enterprise Series 2.4 and UniBox Campus Series 2.4 contain a OS command injection vulnerability in /tools/ping, which can leads to complete device takeover...
Cross site request forgery (csrf)
Unibox SMB 2.4 and UniBox Enterprise Series 2.4 and UniBox Campus Series 2.4 contain a cross-site request forgery CSRF vulnerability in /tools/network-trace, /listusers, /listbyod?usertype=raduser, /dhcpleases, /go?rid=202 in which a specially crafted HTTP request may reconfigure the device...
CVE-2020-21883
Unibox U-50 2.4 and UniBox Enterprise Series 2.4 and UniBox Campus Series 2.4 contain a OS command injection vulnerability in /tools/ping, which can leads to complete device takeover...
Unibox 2.4 CSRF / Remote Code Execution
===================================================== Authenticated Remote Code Execution In Unibox 2.4 ===================================================== . contents:: Table Of Content Overview ======== Title:- Authenticated command execution in all UNIBOX WiFi Hotspot Controller. CVE ID:- Not...
Huawei S5300 Campus Series Switches information Disclosure Vulnerability (huawei-sa-20160112-01-switch)
Huawei S5300 Campus Series switches are prone to a local information disclosure vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ...
CVE-2015-8676
Memory leak in Huawei S5300EI, S5300SI, S5310HI, S6300EI/ S2350EI, and S5300LI Campus series switches with software V200R001C00 before V200R001SPH018, V200R002C00 before V200R003SPH011, and V200R003C00 before V200R003SPH011; S9300, S7700, and S9700 Campus series switches with software V200R001C00...
Information disclosure
Memory leak in Huawei S5300EI, S5300SI, S5310HI, and S6300EI Campus series switches with software V200R003C00 before V200R003SPH011 and V200R005C00 before V200R005SPH008; S2350EI and S5300LI Campus series switches with software V200R003C00 before V200R003SPH011, V200R005C00 before V200R005SPH008,...
CVE-2015-8677
CVE-2015-8677 affects Huawei Campus switches (S5300EI/S5300SI/S5310HI/S6300EI; S2350EI/S5300LI; S9300/S7700/S9700; S5720HI/S5720EI; S2300/S3300) where the HTTPS or SFTP server stores SSL session information in memory after logout. The memory leak can cause memory consumption and device restart (D...
CVE-2015-8676
The CVE-2015-8676 entry documents a memory leak in Huawei switches (S5300EI/S5300SI/S5310HI/S6300EI/S2350EI/S5300LI, S9300/S7700/S9700, S2300/S3300 campuses) that can be triggered by a flood of ICMPv6 packets, leading to memory consumption and a reboot/DoS. Affected software lines include V200R00...
CVE-2015-8676
Memory leak in Huawei S5300EI, S5300SI, S5310HI, S6300EI/ S2350EI, and S5300LI Campus series switches with software V200R001C00 before V200R001SPH018, V200R002C00 before V200R003SPH011, and V200R003C00 before V200R003SPH011; S9300, S7700, and S9700 Campus series switches with software V200R001C00...
CVE-2015-8677
Memory leak in Huawei S5300EI, S5300SI, S5310HI, and S6300EI Campus series switches with software V200R003C00 before V200R003SPH011 and V200R005C00 before V200R005SPH008; S2350EI and S5300LI Campus series switches with software V200R003C00 before V200R003SPH011, V200R005C00 before V200R005SPH008,...
Huawei Campus Series Switches Remote Buffer Overflow DoS (HWPSIRT-2015-02014)
The remote Huawei switch is affected by a denial of service vulnerability due to improper validation of user-supplied input to the service processing function. A remote attacker, using a specially crafted username, can cause an array access violation, resulting in a restart of the device...
CVE-2014-4190
Multiple heap-based buffer overflows in Huawei Campus Series Switches S3700HI, S5700, S6700, S3300HI, S5300, S6300, S9300, S7700, and LSW S9700 with software V200R001 before V200R001SPH013; S5700, S6700, S5300, and S6300 with software V200R002 before V200R002SPH005; S7700, S9300, S9300E, S5300,...
CVE-2014-4190
Multiple heap-based buffer overflows in Huawei Campus Series Switches S3700HI, S5700, S6700, S3300HI, S5300, S6300, S9300, S7700, and LSW S9700 with software V200R001 before V200R001SPH013; S5700, S6700, S5300, and S6300 with software V200R002 before V200R002SPH005; S7700, S9300, S9300E, S5300,...
CVE-2014-4190
CVE-2014-4190 is a heap-based buffer overflow DoS affecting Huawei Campus Series switches (models S3700HI, S5700, S6700, S3300HI, S5300, S6300, S9300, S7700, and LSW S9700) with firmware lines including V200R001 before V200R001SPH013; V200R002 before V200R002SPH005; V200R003 before V200R003SPH005...
Security Advisory-Multiple Heap Overflow Vulnerabilities in Huawei Campus Series Switches
Some Huawei Campus series switches have three heap overflow vulnerabilities. When receiving some special malformed packets, such devices access heap memory that is beyond the valid range and cause unexpected restart of the devices. If an attacker keeps sending such malformed packets, the devices...