5 matches found
Remote code execution
Import Signal Tone function in Huawei eSpace 7950 V200R003C30; eSpace 8950 V200R003C00; V200R003C30 has a remote code execution vulnerability. An authenticated, remote attacker can craft and send the packets to the affected products after the Signal Tone is uploaded. Due to insufficient...
CVE-2017-17221
CVE-2017-17221 affects Huawei eSpace devices (7950 V200R003C30 and 8950 V200R003C00; V200R003C30). The issue is a remote code execution vulnerability in the Import Signal Tone function triggered after a signal tone is uploaded, caused by insufficient verification of received packets. An authentic...
CVE-2017-17223
Huawei eSpace 7910, 7950, and 8950 devices (V200R003C30/0: eSpace 7910 V200R003C30; eSpace 7950 V200R003C30; eSpace 8950 V200R003C00/0; V200R003C30) are affected by a directory traversal vulnerability. An authenticated, remote attacker can craft a specific URL, exploiting insufficient URL verific...
CVE-2017-2690
SoftCo with software V200R003C20,eSpace U1910 with software V200R003C00, V200R003C20 and V200R003C30,eSpace U1911 with software V200R003C20, V200R003C30,eSpace U1930 with software V200R003C20 and V200R003C30,eSpace U1960 with software V200R003C20, V200R003C30,eSpace U1980 with software V200R003C2...
Design/Logic Flaw
SoftCo with software V200R003C20,eSpace U1910 with software V200R003C00, V200R003C20 and V200R003C30,eSpace U1911 with software V200R003C20, V200R003C30,eSpace U1930 with software V200R003C20 and V200R003C30,eSpace U1960 with software V200R003C20, V200R003C30,eSpace U1980 with software V200R003C2...