Lucene search
K

39 matches found

Prion
Prion
added 2020/07/18 1:16 a.m.18 views

Cross site scripting

There is an out-of-bounds write vulnerability in some products. An unauthenticated attacker crafts malformed packets with specific parameter and sends the packets to the affected products. Due to insufficient validation of packets, which may be exploited to cause the process reboot. Affected...

3.3CVSS6.5AI score0.00329EPSS
Exploits0References1Affected Software6
CVE
CVE
added 2020/06/15 2:56 p.m.65 views

CVE-2020-9075

CVE-2020-9075 affects Huawei Secospace USG6300/USG6300E (V500R001C30/V500R001C50/V500R001C60/V500R001C80/V500R005C00/V500R005C10/V600R006C00). The root cause is insufficient input verification in these devices, enabling an attacker with limited privileges to access a specific directory and potent...

6.5CVSS6.3AI score0.00607EPSS
Exploits0References1Affected Software2
OpenVAS
OpenVAS
added 2020/06/09 12:0 a.m.65 views

Huawei Products Improper Authentication Vulnerability (huawei-sa-20200506-02-authentication)

Multiple Huawei products are prone to an improper authentication vulnerability. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program...

9.8CVSS9.8AI score0.00876EPSS
Exploits0References1
NVD
NVD
added 2020/06/08 2:15 p.m.24 views

CVE-2020-9099

Huawei products IPS Module; NGFW Module; NIP6300; NIP6600; NIP6800; Secospace USG6300; Secospace USG6500; Secospace USG6600; USG9500 with versions of V500R001C00; V500R001C20; V500R001C30; V500R001C50; V500R001C60; V500R001C80; V500R005C00; V500R005C10; V500R005C20; V500R002C00; V500R002C10;...

9.8CVSS9.7AI score0.00876EPSS
Exploits0References1
Prion
Prion
added 2020/06/08 2:15 p.m.23 views

Authentication flaw

Huawei products IPS Module; NGFW Module; NIP6300; NIP6600; NIP6800; Secospace USG6300; Secospace USG6500; Secospace USG6600; USG9500 with versions of V500R001C00; V500R001C20; V500R001C30; V500R001C50; V500R001C60; V500R001C80; V500R005C00; V500R005C10; V500R005C20; V500R002C00; V500R002C10;...

7.5CVSS9.5AI score0.00876EPSS
Exploits0References1Affected Software9
Cvelist
Cvelist
added 2020/06/08 1:55 p.m.26 views

CVE-2020-9099

Huawei products IPS Module; NGFW Module; NIP6300; NIP6600; NIP6800; Secospace USG6300; Secospace USG6500; Secospace USG6600; USG9500 with versions of V500R001C00; V500R001C20; V500R001C30; V500R001C50; V500R001C60; V500R001C80; V500R005C00; V500R005C10; V500R005C20; V500R002C00; V500R002C10;...

9.7AI score0.00876EPSS
Exploits0References1
NVD
NVD
added 2020/02/28 7:15 p.m.22 views

CVE-2020-1876

NIP6800;Secospace USG6600;USG9500 with versions of V500R001C30; V500R001C60SPC500; V500R005C00SPC100 have an out-of-bounds write vulnerability. An unauthenticated attacker crafts malformed packets with specific parameter and sends the packets to the affected products. Due to insufficient validati...

7.5CVSS7.6AI score0.00755EPSS
Exploits0References1
Prion
Prion
added 2020/02/28 7:15 p.m.22 views

Out-of-bounds

NIP6800;Secospace USG6600;USG9500 with versions of V500R001C30; V500R001C60SPC500; V500R005C00SPC100 have an out-of-bounds write vulnerability. An unauthenticated attacker crafts malformed packets with specific parameter and sends the packets to the affected products. Due to insufficient validati...

5CVSS7.6AI score0.00755EPSS
Exploits0References1Affected Software3
CVE
CVE
added 2020/02/28 6:48 p.m.112 views

CVE-2020-1877

CVE-2020-1877 involves Huawei NIP6800, Secospace USG6600 and USG9500 devices. Affected versions include V500R001C30; V500R001C60SPC500; V500R005C00SPC100. The root cause is an invalid pointer access when an administrator logs in and performs operations, which can cause certain processes to reboot...

4.9CVSS4.7AI score0.002EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2020/02/28 6:42 p.m.118 views

CVE-2020-1876

CVE-2020-1876 affects Huawei NIP6800, Secospace USG6600 and USG9500 with specific V500R001C30, V500R001C60SPC500 and V500R005C00SPC100 builds. It is an out-of-bounds write vulnerability triggered by unauthenticated, malformed packets that bypass validation and may reboot the targeted device. Root...

7.5CVSS7.6AI score0.00755EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/02/28 6:42 p.m.22 views

CVE-2020-1876

NIP6800;Secospace USG6600;USG9500 with versions of V500R001C30; V500R001C60SPC500; V500R005C00SPC100 have an out-of-bounds write vulnerability. An unauthenticated attacker crafts malformed packets with specific parameter and sends the packets to the affected products. Due to insufficient validati...

7.7AI score0.00755EPSS
Exploits0References1
CVE
CVE
added 2020/02/28 6:33 p.m.125 views

CVE-2020-1881

CVE-2020-1881 affects Huawei NIP6800, Secospace USG6600 and USG9500 devices. A resource management error in a function can be triggered by specific operations, leading to service abnormality. Affected versions include V500R001C30, V500R001C60SPC500 and V500R005C00SPC100. Remediation references Hu...

7.5CVSS7.4AI score0.00775EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2020/02/28 6:28 p.m.122 views

CVE-2020-1860

The CVE-2020-1860 entry concerns Huawei Secospace/NIP6800 family devices (NIP6800; Secospace USG6600; USG9500) with firmware lines V500R001C30, V500R001C60SPC500, and V500R005C00SPC100, where an access control bypass vulnerability exists. The root cause allows attackers who can reach the internal...

7.5CVSS7.5AI score0.00664EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2020/02/28 6:21 p.m.111 views

CVE-2020-1874

The CVE-2020-1874 entry concerns Huawei NIP6800, Secospace USG6600, and USG9500 devices. Affected versions include V500R001C30; V500R001C60SPC500; V500R005C00SPC100. Description across sources states an invalid pointer access vulnerability that is triggered when an operator logs in and performs o...

5.5CVSS5.4AI score0.00199EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/02/28 6:21 p.m.24 views

CVE-2020-1874

NIP6800;Secospace USG6600;USG9500 products versions of V500R001C30; V500R001C60SPC500; V500R005C00SPC100 have a invalid pointer access vulnerability. The software system access an invalid pointer when operator logs in to the device and performs some operations. Successful exploit could cause...

5.4AI score0.00199EPSS
Exploits0References1
CVE
CVE
added 2020/02/28 6:5 p.m.122 views

CVE-2020-1875

The CVE-2020-1875 entry concerns Huawei NIP6800, Secospace USG6600, and USG9500 devices with invalid pointer access in certain operations, leading to a reboot of a process. Affected: NIP6800 (V500R001C30, V500R001C60SPC500), Secospace USG6600 (V500R001C30SPC200, V500R001C30SPC600, V500R001C60SPC5...

5.5CVSS5.5AI score0.00199EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2020/02/18 12:15 a.m.22 views

CVE-2020-1815

Huawei NIP6800 versions V500R001C30, V500R001C60SPC500, and V500R005C00; Secospace USG6600 and USG9500 versions V500R001C30SPC200, V500R001C30SPC600, V500R001C60SPC500, and V500R005C00 have a memory leak vulnerability. The software does not sufficiently track and release allocated memory while...

7.5CVSS7.4AI score0.00723EPSS
Exploits0References1
Prion
Prion
added 2020/02/18 12:15 a.m.22 views

Input validation

Huawei NIP6800 versions V500R001C30, V500R001C60SPC500, and V500R005C00; Secospace USG6600 and USG9500 versions V500R001C30SPC200, V500R001C30SPC600, V500R001C60SPC500, and V500R005C00 have a Denial of Service DoS vulnerability. Due to improper processing of specific IPSEC packets, remote attacke...

4.3CVSS7.5AI score0.00863EPSS
Exploits0References1Affected Software3
NVD
NVD
added 2020/02/17 9:15 p.m.25 views

CVE-2020-1856

Huawei NGFW Module, NIP6300, NIP6600, Secospace USG6500, Secospace USG6600, and USG9500 versions V500R001C30, V500R001C60, and V500R005C00 have an information leakage vulnerability. An attacker can exploit this vulnerability by sending specific request packets to affected devices. Successful...

7.5CVSS7.4AI score0.00764EPSS
Exploits0References1
OSV
OSV
added 2020/02/17 9:15 p.m.3 views

CVE-2020-1856

Huawei NGFW Module, NIP6300, NIP6600, Secospace USG6500, Secospace USG6600, and USG9500 versions V500R001C30, V500R001C60, and V500R005C00 have an information leakage vulnerability. An attacker can exploit this vulnerability by sending specific request packets to affected devices. Successful...

7.5CVSS7.1AI score0.00764EPSS
Exploits0References1
Rows per page
Query Builder