17 matches found
CVE-2017-17317
Common Open Policy Service Protocol COPS module in Huawei USG6300 V100R001C10; V100R001C20; V100R001C30; V500R001C00; V500R001C20; V500R001C30; V500R001C50; Secospace USG6500 V100R001C10; V100R001C20; V100R001C30; V500R001C00; V500R001C20; V500R001C30; V500R001C50; Secospace USG6600 V100R001C00;...
CVE-2017-17251
CVE-2017-17251 is a Huawei H323 protocol null pointer dereference vulnerability affecting multiple Huawei devices (e.g., AR120-S/AR1200/AR150/AR200-series, DR modules, Secospace USG, ViewPoint, etc.). Root cause: insufficient validation of H323 packets leading to a null pointer dereference and po...
CVE-2017-17298
Huawei AR120-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR1200 V200R006C10, V200R006C13, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR1200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR150 V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20,...
Multiple Huawei products SCCPX module out-of-bounds read vulnerability
Huawei DP300, RP200, TE series, etc. are all-in-one desktop SmartZen and all-in-one video conferencing terminal products of Huawei China Company. An out-of-bounds read vulnerability exists in the SCCPX module of multiple Huawei products. The vulnerability is due to the device failing to adequatel...
Invalid Memory Access Vulnerability in SCCPX Module for Multiple Huawei Products (CNVD-2018-05092)
Huawei DP300, RP200, TE series, etc. are all-in-one desktop SmartZen and all-in-one video conferencing terminal products of Huawei China Company. An invalid memory access vulnerability exists in the SCCPX module of multiple Huawei products, which is due to the device failing to adequately detect...
Integer Overflow Vulnerability in Multiple Huawei Products
Huawei DP300, RP200, TE series, etc. are all-in-one desktop SmartZen and all-in-one video conferencing terminal products of Huawei China Company. An integer overflow vulnerability exists in multiple Huawei products, which is due to the device failing to adequately validate some fields in a messag...
Memory leak vulnerability in multiple Huawei products (CNVD-2018-02542)
Huawei DP300, RP200, TE series, etc. are all-in-one desktop SmartZen and all-in-one video conferencing terminal products of Huawei China Company. A memory leak vulnerability exists in several Huawei products due to a failure of the device to properly free allocated memory. A local attacker with...
Memory leak vulnerability in multiple Huawei products (CNVD-2018-02543)
Huawei DP300, RP200, TE series, etc. are all-in-one desktop SmartZen and all-in-one video conferencing terminal products of Huawei China Company. A memory disclosure vulnerability exists in multiple Huawei products due to the device failing to properly free the memory requested to process XML dat...
MGCP protocol out-of-bounds read vulnerability in multiple Huawei products
Huawei DP300, RP200, TE series, etc. are all-in-one desktop SmartZen and all-in-one video conferencing terminal products of Huawei China Company. An out-of-bounds read vulnerability exists in the MGCP protocol of several Huawei products, which is due to the program's failure to adequately verify...
Buffer overflow vulnerability in multiple Huawei products (CNVD-2017-37505)
Huawei AR and SRG series enterprise routers are all-in-one routers for small and medium-sized offices or branches of small and medium-sized enterprises launched by Huawei; TE series, DP300, and MAX PRESENCE are all integrated desktop smart products and high-definition videoconferencing terminals...
Multiple Huawei Products XML Parser Denial of Service Vulnerabilities
Huawei DP300 and RP200 are Huawei's all-in-one desktop SmartTruth products for high-end customers, and the TE series is a high-definition videoconferencing terminal that supports 1080p60. A denial-of-service vulnerability exists in the XML parser of multiple Huawei products. The vulnerability is...
Buffer overflow vulnerability in multiple Huawei products (CNVD-2017-34416)
Huawei DP300, RP200, TE series and TX50 are Huawei's all-in-one desktop and high-definition videoconferencing end products for high-end customers. A buffer overflow vulnerability exists in several Huawei products, which is caused by the device failing to adequately validate parameters in the...
Buffer overflow vulnerability in multiple Huawei products (CNVD-2017-34414)
Huawei DP300, RP200, TE series and TX50 are Huawei's all-in-one desktop and high-definition videoconferencing end products for high-end customers. A buffer overflow vulnerability exists in several Huawei products, which is caused by the device failing to adequately validate parameters in the...
Buffer overflow vulnerability in multiple Huawei products (CNVD-2017-34415)
Huawei DP300, RP200, TE series and TX50 are Huawei's all-in-one desktop and high-definition videoconferencing end products for high-end customers. A buffer overflow vulnerability exists in several Huawei products, which is caused by the device failing to adequately validate parameters in the...
Multiple Huawei products cross-border read vulnerability (CNVD-2017-34419)
Huawei RP200 and TE series are Huawei's all-in-one desktop and high-definition videoconferencing products for high-end customers. The out-of-bounds read vulnerability exists in several Huawei products, as the devices fail to adequately verify user input. A remote attacker could exploit this...
Multiple Huawei products cross-border read vulnerability (CNVD-2017-34420)
Huawei RP200 and TE series are Huawei's all-in-one desktop and high-definition videoconferencing products for high-end customers. The out-of-bounds read vulnerability exists in several Huawei products, as the devices fail to adequately verify user input. A remote attacker could exploit this...
Security Advisory - Two Vulnerabilities in Huawei TE Series Product
Huawei TE series is a multimedia video conferencing endpoint that transfers audio, video, and desktop resources based on IP networks. It offers point-to-point and multiparty conferences for attendees at different places to enjoy face-to-face audio/video communication experience. A security...