Lucene search
K

8 matches found

Huawei
Huawei
added 2021/04/28 12:0 a.m.53 views

Security Advisory - Denial of Service Vulnerability in Some Huawei Products

There is a denial of service vulnerability in some huawei products. In specific scenarios, due to the insufficient verification of the parameter, an attacker may craft some specific parameter. Successful exploit may cause some services abnormal. Vulnerability ID: HWPSIRT-2020-66984 This...

6.5CVSS6.4AI score0.00283EPSS
Exploits0Affected Software1
Huawei
Huawei
added 2020/05/13 12:0 a.m.61 views

Security Advisory - Out of Bounds Read Vulnerability in Several Smartphones

There is an out of bound read vulnerability in several smartphones. The software reads data past the end of the intended buffer. The attacker tricks the user into installing a crafted application, successful exploit may cause information disclosure or service abnormal. Vulnerability ID:...

7.1CVSS6.6AI score0.0054EPSS
Exploits0Affected Software18
Huawei
Huawei
added 2019/01/23 12:0 a.m.66 views

Security Advisory - FragmentSmack Vulnerability in Linux Kernel

There is a DoS vulnerability in the Linux Kernel versions 3.9+ known as a FragmentSmack attack. Remote attackers could send fragmented IPv4 or IPv6 packets to the affected device to trigger time and calculation reassembly algorithms that could consume excessive CPU resources, resulting in a DoS...

7.8CVSS7.6AI score0.24575EPSS
Exploits0Affected Software37
Huawei
Huawei
added 2018/04/13 12:0 a.m.23 views

Security Advisory - Authentication Bypass Vulnerability in Some Pre-installed Apps on Huawei Phones

There is an authentication bypass vulnerability in some pre-installed apps on Huawei mobile phones due to insufficient validation on invocation requests. An attacker may trick a user into installing a malicious app which can invoke the open interfaces of the vulnerable apps to install any apps...

4.3CVSS5AI score0.00666EPSS
Exploits0Affected Software2
Huawei
Huawei
added 2018/02/14 12:0 a.m.41 views

Security Advisory - Out-Of-Bounds Write Vulnerability on Several Huawei Products

There is an out-of-bounds write vulnerability on several Huawei products. When a user executes a query command after the device received an abnormal OSPF message, the software writes data past the end of the intended buffer due to the insufficient verification of the input data. An unauthenticate...

7.1CVSS6.8AI score0.01058EPSS
Exploits0Affected Software21
Huawei
Huawei
added 2017/11/20 12:0 a.m.27 views

Security Advisory - Multiple Security Vulnerabilities in Huawei iReader

Huawei iReader app has three security vulnerabilities. The app has an input validation vulnerability due to insufficient validation on the URL used for loading network data. An attacker can control app access and load malicious websites created by the attacker, and the code in webpages would be...

8.8CVSS7.1AI score0.00976EPSS
Exploits0Affected Software1
Huawei
Huawei
added 2017/05/31 12:0 a.m.38 views

Security Advisory - Command Injection Vulnerability in the NetEco

Huawei iManager NetEco has a command injection vulnerability due to insufficient input validation. An authenticated, remote attacker could exploit this vulnerability to send malicious packets to a target device. Successful exploit could enable a low privileged user to execute commands that a high...

8.8CVSS8.8AI score0.01537EPSS
Exploits0Affected Software1
Huawei
Huawei
added 2016/10/26 12:0 a.m.24 views

Security Advisory - Defense Mechanism Bypass Vulnerability in Huawei USG Products

There is a defense mechanism bypass vulnerability in Huawei USG products. Successful exploit could allow an attacker to bypass the anti-DDoS module of the USGs to send massive HTTP packets, possibly causing a denial of service condition on the backend server. Vulnerability ID: HWPSIRT-2016-07050...

7.8CVSS7.5AI score0.01011EPSS
Exploits0Affected Software1
Rows per page
Query Builder