15 matches found
CVE-2021-39999
There is a buffer overflow vulnerability in eSE620X vESS V100R001C10SPC200 and V100R001C20SPC200. An attacker can exploit this vulnerability by sending a specific message to the target device due to insufficient validation of packets. Successful exploit could cause a denial of service condition...
CVE-2021-39999
There is a buffer overflow vulnerability in eSE620X vESS V100R001C10SPC200 and V100R001C20SPC200. An attacker can exploit this vulnerability by sending a specific message to the target device due to insufficient validation of packets. Successful exploit could cause a denial of service condition...
CVE-2021-39999
There is a buffer overflow vulnerability in eSE620X vESS V100R001C10SPC200 and V100R001C20SPC200. An attacker can exploit this vulnerability by sending a specific message to the target device due to insufficient validation of packets. Successful exploit could cause a denial of service condition...
Buffer overflow
There is a buffer overflow vulnerability in eSE620X vESS V100R001C10SPC200 and V100R001C20SPC200. An attacker can exploit this vulnerability by sending a specific message to the target device due to insufficient validation of packets. Successful exploit could cause a denial of service condition...
CVE-2021-39999
There is a buffer overflow in Huawei eSE620X vESS (V100R001C10SPC200 and V100R001C20SPC200) caused by insufficient packet validation, allowing a remote attacker to trigger a denial-of-service by sending a crafted message. Connected advisories confirm Huawei has released software updates to fix th...
CVE-2021-39995
Some Huawei products use the OpenHpi software for hardware management. A function that parses data returned by OpenHpi contains an out-of-bounds read vulnerability that could lead to a denial of service. Affected product versions include: eCNS280TD V100R005C10; eSE620X vESS V100R001C10SPC200,...
CVE-2021-39995
Some Huawei products use the OpenHpi software for hardware management. A function that parses data returned by OpenHpi contains an out-of-bounds read vulnerability that could lead to a denial of service. Affected product versions include: eCNS280TD V100R005C10; eSE620X vESS V100R001C10SPC200,...
CVE-2021-22365
There is an out of bounds read vulnerability in eSE620X vESS V100R001C10SPC200, V100R001C20SPC200, V200R001C00SPC300. A local attacker can exploit this vulnerability by sending specific message to the target device. Due to insufficient validation of internal message, successful exploit may cause...
CVE-2021-22366
There is an out-of-bounds read vulnerability in eSE620X vESS V100R001C10SPC200, V100R001C20SPC200, V200R001C00SPC300. The vulnerability is due to a function that handles an internal message contains an out-of-bounds read vulnerability. An attacker could crafted messages between system process,...
CVE-2021-22366
There is an out-of-bounds read vulnerability in eSE620X vESS V100R001C10SPC200, V100R001C20SPC200, V200R001C00SPC300. The vulnerability is due to a function that handles an internal message contains an out-of-bounds read vulnerability. An attacker could crafted messages between system process,...
CVE-2021-22366
CVE-2021-22366 affects Huawei ESE620X vESS products (V100R001C10SPC200, V100R001C20SPC200, V200R001C00SPC300). The issue is an out-of-bounds read in a function that handles an internal message, which could allow an attacker to craft messages between system processes and trigger a Denial of Servic...
CVE-2021-22365
There is an out of bounds read vulnerability in eSE620X vESS V100R001C10SPC200, V100R001C20SPC200, V200R001C00SPC300. A local attacker can exploit this vulnerability by sending specific message to the target device. Due to insufficient validation of internal message, successful exploit may cause...
CVE-2021-22365
Affects Huawei ESE620X vESS: vulnerable in versions V100R001C10SPC200, V100R001C20SPC200, V200R001C00SPC300 due to insufficient validation of internal messages, causing an out-of-bounds read that can make the targeted process and service abnormal when a specially crafted message is sent locally. ...
Huawei ESE620X vESS Buffer Overflow Vulnerability (CNVD-2021-100796)
Huawei ESE620X vESS is a virtual enterprise service controller that provides voice, video, trunk communications, and industry-related services.Huawei ESE620X vESS is vulnerable to a buffer overflow vulnerability that could be exploited by a local attacker to submit a special request that could...
Huawei ESE620X vESS buffer overflow vulnerability
Huawei ESE620X vESS is a virtual enterprise service controller from Huawei, China. A security vulnerability exists in ESE620X vESS, which is caused by an out-of-bounds read in a function that handles internal messages. An attacker could use this vulnerability to send a constructed exception messa...