92 matches found
CVE-2017-15332
CVE-2017-15332 corresponds to a memory-leak vulnerability in the H323 protocol across multiple Huawei products (e.g., AR, ARS, SRG, NetEngine, Secospace USG, etc.). The issue arises from insufficient verification/checks of H323 packets, allowing an unauthenticated, remote attacker to send crafted...
CVE-2017-17298
CVE-2017-17298 is a buffer overflow vulnerability affecting a wide range of Huawei router and enterprise devices (e.g., AR120-S, AR1200, AR150/AR160/AR200/AR2200 families, ViewPoint, and others) caused by insufficient validation of certificates. An unauthenticated, remote attacker can send specia...
CVE-2017-17295
CVE-2017-17295 describes buffer overflow vulnerabilities in numerous Huawei products caused by insufficient validation of SIP package values. An unauthenticated, remote attacker may send crafted SIP packages to affected devices (e.g., AR120-S, AR1200, AR150/AR200 families and others listed) to tr...
CVE-2017-17291
Huawei AR120-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR1200 V200R006C10, V200R006C13, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR1200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR150 V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20,...
CVE-2017-15353
Concrete details exist: CVE-2017-15353 affects Huawei DP300, ViewPoint series and other listed endpoints (e.g., V500R002C00, V600R006C00, TE30/TE40/TE50/TE60, TX50, VP9660, ViewPoint 8660/9030, etc.). Root cause is out-of-bounds read due to insufficient input validation, requiring an attacker to ...
CVE-2017-17289
Huawei DP300 V500R002C00, RP200 V500R002C00, V600R006C00, TE30 V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C10, V500R002C00, V600R006C00 have a memory leak vulnerability. The software does not release allocated memory properly...
CVE-2017-17294
Huawei AR120-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR1200 V200R006C10, V200R006C13, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR1200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR150 V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20,...
CVE-2017-15320
RP200 V500R002C00, V600R006C00; TE30 V100R001C10, V500R002C00, V600R006C00; TE40 V500R002C00, V600R006C00; TE50 V500R002C00, V600R006C00; TE60 V100R001C10, V500R002C00, V600R006C00 have an out-of-bounds read vulnerabilities in some Huawei products. Due to insufficient input validation, a remote...
CVE-2017-15319
RP200 V500R002C00, V600R006C00; TE30 V100R001C10, V500R002C00, V600R006C00; TE40 V500R002C00, V600R006C00; TE50 V500R002C00, V600R006C00; TE60 V100R001C10, V500R002C00, V600R006C00 have an out-of-bounds read vulnerabilities in some Huawei products. Due to insufficient input validation, a remote...
Timergrp module denial of service vulnerability in multiple Huawei products
Huawei DP300, RP200, and TE30/40/50/60 are Huawei's all-in-one desktop and high-definition videoconferencing end products for high-end customers. A denial-of-service vulnerability exists in the Timergrp module of multiple Huawei products due to the program's failure to adequately check parameters...
Denial of Service Vulnerability in Multiple Huawei Products (CNVD-2018-00320)
Huawei DP300, RP200, and TE30/40/50/60 are Huawei's all-in-one desktop products and high-definition videoconferencing terminals for high-end customers. A denial of service vulnerability exists in several Huawei products due to insufficient parameter checking when loading the putty comment key. A...
CVE-2015-8673
The CVE-2015-8673 issue affects Huawei TE30/TE40/TE50/TE60 video conferencing endpoints running software before V100R001C10SPC100. The Debug account password change vulnerability lets a physically proximate attacker change the Debug account password without entering the old password when an unatt...