CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

!/usr/bin/env python -- coding: utf-8 -- Huawei eSpace Meeting cenwpoll.dll Unicode Stack Buffer Overflow with SEH Overwrite Vendor: Huawei Technologies Co., Ltd. Product web page: https://www.huawei.com Affected application: eSpace 1.1.11.103 aka eSpace ECS, eSpace Desktop, eSpace Meeting, eSpac...

1.9CVSS6.6AI score0.00106EPSS

Exploits4

CNVD•added 2018/06/05 12:0 a.m.•1 views

Huawei eSpace Desktop Cross-Site Scripting Vulnerability

Huawei eSpace Desktop is a communication PC client based on the eSpace unified communication solution of Huawei China, which provides instant messaging, status presentation, personal address book, VoIP call, video call, file transfer, voice conference, data conference and other business...

5.4CVSS6.3AI score0.00094EPSS

Exploits0References1

OSV•added 2018/06/01 2:29 p.m.•1 views

CVE-2018-7976

There is a stored cross-site scripting XSS vulnerability in Huawei eSpace Desktop V300R001C00 and V300R001C50 version. Due to the insufficient validation of the input, an authenticated, remote attacker could exploit this vulnerability to send abnormal messages to the system and perform a XSS...

5.4CVSS5.8AI score

Exploits0References1

NVD•added 2018/06/01 2:29 p.m.•14 views

CVE-2018-7976

5.4CVSS5.2AI score0.00094EPSS

Exploits0References1

Prion•added 2018/06/01 2:29 p.m.•16 views

Cross site scripting

3.5CVSS5.2AI score0.00094EPSS

Exploits0References1Affected Software1

CVE•added 2018/06/01 2:0 p.m.•44 views

CVE-2018-7976

CVE-2018-7976 is a stored XSS vulnerability in Huawei eSpace Desktop V300R001C00 and V300R001C50 caused by insufficient input validation. An authenticated, remote attacker can send abnormal messages to trigger XSS, potentially causing the eSpace Desktop to hang; behavior returns to normal after a...

5.4CVSS5.2AI score0.00094EPSS

Exploits0References1Affected Software1

Huawei•added 2018/05/30 12:0 a.m.•23 views

Security Advisory - Stored XSS Vulnerability in eSpace Desktop

There is a stored cross-site scripting XSS vulnerability in eSpace Desktop. Due to the insufficient validation of the input, an authenticated, remote attacker could exploit this vulnerability to send abnormal messages to the system and perform a XSS attack. A successful exploit could cause the...

5.4CVSS5.3AI score0.00094EPSS

Exploits0Affected Software1

CNVD•added 2015/01/04 12:0 a.m.•1 views

Huawei eSpace Desktop V200R003C00 has multiple untrusted search path vulnerabilities

Huawei eSpace Desktop is a Unified Communications PC client developed by Huawei. Multiple untrusted search path vulnerabilities exist in versions prior to Huawei eSpace Desktop V200R003C00, which allow local users to execute arbitrary code and perform DLL hijacking attacks via the Trojan horse...

4.4CVSS7.5AI score0.00075EPSS

Exploits4References1

CNVD•added 2015/01/04 12:0 a.m.•3 views

Huawei eSpace Desktop V100R001C03 Denial of Service Vulnerability (CNVD-2015-00029)

Huawei eSpace Desktop is a Unified Communications PC client developed by Huawei. A denial of service vulnerability exists in versions prior to Huawei eSpace Desktop V100R001C03, which allows local users to cause a denial of service via a crafted image...

2.1CVSS6.2AI score0.001EPSS

Exploits3References1

CNVD•added 2015/01/04 12:0 a.m.•2 views

Huawei eSpace Desktop V100R001C03 Denial of Service Vulnerability (CNVD-2015-00027)

Huawei eSpace Desktop is a Unified Communications PC client developed by Huawei. A denial of service vulnerability exists in Huawei eSpace Desktop before V100R001C03 that allows local users to cause a denial of service via a crafted QES file...

1.9CVSS6.2AI score0.00106EPSS

Exploits4References1

CNVD•added 2015/01/04 12:0 a.m.•2 views

Huawei eSpace Desktop V200R001C03 Denial of Service Vulnerability (CNVD-2015-00030)

Huawei eSpace Desktop is a Unified Communications PC client developed by Huawei. A denial of service vulnerability exists in versions prior to Huawei eSpace Desktop V200R001C03, which allows local users to cause a denial of service via unspecified vectors...

2.1CVSS6.3AI score0.00191EPSS

Exploits4References1

NVD•added 2014/12/24 6:59 p.m.•9 views

CVE-2014-9417

The Meeting component in Huawei eSpace Desktop before V100R001C03 allows local users to cause a denial of service program exit via a crafted image...

2.1CVSS6AI score0.001EPSS

Exploits3References2

NVD•added 2014/12/24 6:59 p.m.•12 views

CVE-2014-9418

The eSpace Meeting ActiveX control eSpaceStatusCtrl.dll in Huawei eSpace Desktop before V200R001C03 allows local users to cause a denial of service memory overflow via unspecified vectors...

2.1CVSS6.1AI score0.00191EPSS

Exploits4References2

NVD•added 2014/12/24 6:59 p.m.•11 views

CVE-2014-9416

Multiple untrusted search path vulnerabilities in Huawei eSpace Desktop before V200R003C00 allow local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse 1 mfc71enu.dll, 2 mfc71loc.dll, 3 tcapi.dll, or 4 airpcap.dll...

4.4CVSS7.3AI score0.00075EPSS

Exploits4References2

NVD•added 2014/12/24 6:59 p.m.•15 views

CVE-2014-9415

Huawei eSpace Desktop before V100R001C03 allows local users to cause a denial of service program exit via a crafted QES file...

1.9CVSS6AI score0.00106EPSS

Exploits4References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by