Lucene search
K

46 matches found

OpenVAS
OpenVAS
added 2021/11/24 12:0 a.m.17 views

Huawei Data Communication: Use-after-free Vulnerability in Huawei Products (huawei-sa-20211008-01-cloudengine)

There is a use-after-free UAF vulnerability in Huawei products. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free softwar...

6.5CVSS7.1AI score0.0026EPSS
Exploits0References1
NVD
NVD
added 2021/10/27 1:15 a.m.33 views

CVE-2021-37122

There is a use-after-free UAF vulnerability in Huawei products. An attacker may craft specific packets to exploit this vulnerability. Successful exploitation may cause the service abnormal. Affected product versions include:CloudEngine 12800 V200R005C10SPC800,V200R019C00SPC800;CloudEngine 5800...

6.5CVSS0.0026EPSS
Exploits0References1
OSV
OSV
added 2021/10/27 1:15 a.m.5 views

CVE-2021-37122

There is a use-after-free UAF vulnerability in Huawei products. An attacker may craft specific packets to exploit this vulnerability. Successful exploitation may cause the service abnormal. Affected product versions include:CloudEngine 12800 V200R005C10SPC800,V200R019C00SPC800;CloudEngine 5800...

6.5CVSS5.8AI score0.0026EPSS
Exploits0References1
CVE
CVE
added 2021/10/27 12:36 a.m.73 views

CVE-2021-37122

CVE-2021-37122 is a confirmed use-after-free (UAF) vulnerability disclosed in Huawei CloudEngine products. Affected models include CloudEngine 12800 (V200R005C10SPC800, V200R019C00SPC800), 5800 (V200R005C10SPC800, V200R019C00SPC800), 6800 (V200R005C10SPC800, V200R005C20SPC800, V200R019C00SPC800),...

6.5CVSS6.3AI score0.0026EPSS
Exploits0References1Affected Software1
OpenVAS
OpenVAS
added 2021/08/24 12:0 a.m.19 views

Denial of Service Vulnerability in Some Huawei Products (huawei-sa-20210407-01-dos)

There is a denial of service vulnerability in some Huawei products. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...

7.5CVSS7.5AI score0.00677EPSS
Exploits0References1
Prion
Prion
added 2021/08/23 8:15 p.m.20 views

Denial of service

There is a denial of service vulnerability in some huawei products. In specific scenarios, due to the improper handling of the packets, an attacker may craft the specific packet. Successful exploit may cause some services abnormal. Affected product versions include:CloudEngine 12800...

5CVSS7.3AI score0.00677EPSS
Exploits0References1Affected Software4
CVE
CVE
added 2021/08/23 7:29 p.m.71 views

CVE-2021-22328

CVE-2021-22328 describes a denial-of-service vulnerability in Huawei CloudEngine switches (12800, 5800, 6800, 7800) running V200R005C00SPC800. The issue arises from improper packet handling in specific scenarios, which can cause some services to behave abnormally. The vulnerability is associated ...

7.5CVSS7.4AI score0.00677EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/05/27 12:18 p.m.27 views

CVE-2021-22362

There is an out of bounds write vulnerability in some Huawei products. An attacker can exploit this vulnerability by sending crafted data in the packet to the target device. Due to insufficient validation of message, successful exploit can cause certain service abnormal.Affected product versions...

5.6AI score0.00685EPSS
Exploits0References1
OSV
OSV
added 2021/04/28 1:15 p.m.3 views

CVE-2021-22332

There is a pointer double free vulnerability in some versions of CloudEngine 5800, CloudEngine 6800, CloudEngine 7800 and CloudEngine 12800. When a function is called, the same memory pointer is copied to two functional modules. Attackers can exploit this vulnerability by performing a malicious...

7.5CVSS5.8AI score
Exploits0References1
OSV
OSV
added 2021/04/28 12:15 p.m.3 views

CVE-2021-22393

There is a denial of service vulnerability in some versions of CloudEngine 5800, CloudEngine 6800, CloudEngine 7800 and CloudEngine 12800. The affected product cannot deal with some messages because of module design weakness . Attackers can exploit this vulnerability by sending a large amount of...

7.5CVSS5.8AI score0.00677EPSS
Exploits0References1
CVE
CVE
added 2021/04/28 11:36 a.m.58 views

CVE-2021-22393

CVE-2021-22393 affects Huawei CloudEngine switches (5800/6800/7800/12800). A module-design weakness causes the device to mishandle certain messages, enabling attackers to trigger a denial of service by sending a large number of specific messages, impacting normal service. Public references in Hua...

7.5CVSS7.3AI score0.00677EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2021/04/28 12:0 a.m.6 views

Huawei CloudEngine 6800 安全漏洞

Huawei CloudEngine 12800 and others are products of Huawei, China.Huawei CloudEngine 12800 is a 12800 series data center switch.Huawei Cloudengine 5800 is a 5800 series data center switch.Huawei Cloudengine 6800 is a 6800 series data center switch. Denial of service vulnerability in multiple Huaw...

7.5CVSS5.7AI score0.00677EPSS
Exploits0References2
CNVD
CNVD
added 2021/04/12 12:0 a.m.4 views

Various Huawei products pointer double release vulnerability

Huawei CloudEngine 6800 and others are products of Huawei, China.CloudEngine 6800 is a 6800 series 10 Gigabit Ethernet switch for data centers.Huawei CloudEngine 12800 is a 12800 series data center switch.Huawei Cloudengine 5800 is a 5800 series data center switch. A pointer double-release...

7.5CVSS6.7AI score0.00677EPSS
Exploits0References1
OSV
OSV
added 2020/12/24 4:15 p.m.4 views

CVE-2020-9137

There is a privilege escalation vulnerability in some versions of CloudEngine 12800,CloudEngine 5800,CloudEngine 6800 and CloudEngine 7800. Due to insufficient input validation, a local attacker with high privilege may execute some specially crafted scripts in the affected products. Successful...

6.7CVSS5.8AI score0.00213EPSS
Exploits0References1
NVD
NVD
added 2020/12/24 4:15 p.m.28 views

CVE-2020-9137

There is a privilege escalation vulnerability in some versions of CloudEngine 12800,CloudEngine 5800,CloudEngine 6800 and CloudEngine 7800. Due to insufficient input validation, a local attacker with high privilege may execute some specially crafted scripts in the affected products. Successful...

6.7CVSS6.6AI score0.00213EPSS
Exploits0References1
CNNVD
CNNVD
added 2020/12/23 12:0 a.m.7 views

Multiple Huawei products security vulnerabilities

Huawei CloudEngine 12800 and others are products of Huawei, China.Huawei CloudEngine 12800 is a 12800 series data center switch.Huawei Cloudengine 5800 is a 5800 series data center switch.Huawei Cloudengine 6800 is a 6800 series data center switch. A security vulnerability exists in multiple Huaw...

7.5CVSS7.1AI score0.00916EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2020/10/15 12:0 a.m.16 views

Denial of Service Vulnerability in Some Huawei Products (huawei-sa-20200527-01-dos)

There is a denial of service vulnerability in some Huawei products. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.5AI score0.00745EPSS
Exploits0References1
OSV
OSV
added 2020/07/17 11:15 p.m.4 views

CVE-2020-9102

There is a information leak vulnerability in some Huawei products, and it could allow a local attacker to get information. The vulnerability is due to the improper management of the username. An attacker with the ability to access the device and cause the username information leak. Affected produ...

3.3CVSS5.8AI score0.00199EPSS
Exploits0References1
Prion
Prion
added 2020/07/17 11:15 p.m.16 views

Information disclosure

There is a information leak vulnerability in some Huawei products, and it could allow a local attacker to get information. The vulnerability is due to the improper management of the username. An attacker with the ability to access the device and cause the username information leak. Affected produ...

2.1CVSS3.7AI score0.00199EPSS
Exploits0References1Affected Software4
CNVD
CNVD
added 2020/05/28 12:0 a.m.2 views

Huawei CloudEngine 6800 and Huawei CloudEngine 12800 Denial of Service Vulnerabilities

Huawei CloudEngine 6800 and Huawei CloudEngine 12800 are both products of Huawei, China.CloudEngine 6800 is a 6800 series 10GbE switch for data centers.Huawei CloudEngine 12800 is a 12800 series data center switch. Huawei CloudEngine 12800 is a 12800 series data center switch. A security...

7.5CVSS6.7AI score0.00745EPSS
Exploits0References1
Rows per page
Query Builder