CVE-2021-22363

There is a resource management error vulnerability in eCNS280TD V100R005C10SPC650. An attacker needs to perform specific operations to exploit the vulnerability on the affected device. Due to improper resource management of the function, the vulnerability can be exploited to cause service abnorma...

CVE-2021-22300

There is an information leak vulnerability in eCNS280TD versions V100R005C00 and V100R005C10. A command does not have timeout exit mechanism. Temporary file contains sensitive information. This allows attackers to obtain information by inter-process access that requires other methods...

EUVD-2021-27197

Malware in sbrugna...

EUVD-2021-9509

Malicious code in bioql PyPI...

EUVD-2021-9524

Malicious code in bioql PyPI...

EUVD-2021-9529

Malicious code in bioql PyPI...

EUVD-2021-9446

Malicious code in bioql PyPI...

CVE-2021-40007

There is an information leak vulnerability in eCNS280TD V100R005C10SPC650. The vulnerability is caused by improper log output management. An attacker with the ability to access the log file of device may lead to information disclosure...

CVE-2021-22383

There is an out-of-bounds read vulnerability in eCNS280TD V100R005C10 and eSE620X vESS V100R001C10SPC200, V100R001C20SPC200, V200R001C00SPC300. The vulnerability is due to a message-handling function that contains an out-of-bounds read vulnerability. An attacker can exploit this vulnerability by...

CVE-2021-40007

There is an information leak vulnerability in eCNS280TD V100R005C10SPC650. The vulnerability is caused by improper log output management. An attacker with the ability to access the log file of device may lead to information disclosure...

Information disclosure

There is an information leak vulnerability in eCNS280TD V100R005C10SPC650. The vulnerability is caused by improper log output management. An attacker with the ability to access the log file of device may lead to information disclosure...

CVE-2021-40007

There is an information leak vulnerability in eCNS280TD V100R005C10SPC650. The vulnerability is caused by improper log output management. An attacker with the ability to access the log file of device may lead to information disclosure...

CVE-2021-40007

CVE-2021-40007 affects Huawei eCNS280_TD in V100R005C10SPC650. The root cause is improper log output management, enabling information disclosure if an attacker can access device log files. Public sources in connected documents corroborate an information‑leak vulnerability with log‑file access as ...

Huawei eCNS280_TD Information Disclosure Vulnerability

Huawei eCNS280TD is a core network device of the wireless broadband trunking system of Huawei China. Huawei eCNS280TD is vulnerable to an information disclosure vulnerability caused by improper management of log output. An attacker with access to the device log files could exploit the vulnerabili...

CVE-2021-39995

The CVE-2021-39995 issue affects Huawei devices using OpenHpi for hardware management. A parsing function on data returned by OpenHpi has an out-of-bounds read that can lead to a denial of service. Affected products and versions include: eCNS280_TD V100R005C10; eSE620X vESS V100R001C10SPC200, V10...

CVE-2021-37036

There is an information leakage vulnerability in FusionCompute 6.5.1, eCNS280TD V100R005C00 and V100R005C10. Due to the improperly storage of specific information in the log file, the attacker can obtain the information when a user logs in to the device. Successful exploit may cause the informati...

Information disclosure

There is an information leakage vulnerability in FusionCompute 6.5.1, eCNS280TD V100R005C00 and V100R005C10. Due to the improperly storage of specific information in the log file, the attacker can obtain the information when a user logs in to the device. Successful exploit may cause the informati...

CVE-2021-37036

CVE-2021-37036 describes an information disclosure in Huawei FusionCompute 6.5.1 and related components (eCNS280_TD V100R005C00/V100R005C10). The root cause is improper storage of specific information in a log file, allowing an attacker to retrieve sensitive data when a user logs into the device....

CVE-2021-37036

There is an information leakage vulnerability in FusionCompute 6.5.1, eCNS280TD V100R005C00 and V100R005C10. Due to the improperly storage of specific information in the log file, the attacker can obtain the information when a user logs in to the device. Successful exploit may cause the informati...

CVE-2021-22396

There is a privilege escalation vulnerability in some Huawei products. Due to improper privilege management, a local attacker with common privilege may access some specific files in the affected products. Successful exploit will cause privilege escalation.Affected product versions include:eCNS280...