Ar3200 Firmware Security Vulnerabilities and Issues — Ar3200 Firmware CVE List

Lucene search

HuaweiAr3200 Firmware

52 matches found

CVE•added 2019/06/04 7:29 p.m.•210 views

CVE-2019-5300

There is a digital signature verification bypass vulnerability in AR1200, AR1200-S, AR150, AR160, AR200, AR2200, AR2200-S, AR3200, SRG1300, SRG2300 and SRG3300 Huawei routers. The vulnerability is due to the affected software improperly verifying digital signatures for the software image in the aff...

6.7CVSS6.3AI score0.00011EPSS

CVE•added 2019/12/16 10:15 p.m.•69 views

CVE-2019-5259

There is an information leakage vulnerability on some Huawei products(AR120-S;AR1200;AR1200-S;AR150;AR150-S;AR160;AR200;AR200-S;AR2200;AR2200-S;AR3200;AR3600). An attacker with low permissions can view some high-privilege information by running specific commands.Successful exploit could cause an in...

6.5CVSS6.2AI score0.0011EPSS

CVE•added 2019/12/13 3:15 p.m.•69 views

CVE-2019-5291

Some Huawei products have an insufficient verification of data authenticity vulnerability. A remote, unauthenticated attacker has to intercept specific packets between two devices, modify the packets, and send the modified packets to the peer device. Due to insufficient verification of some fields ...

5.9CVSS5.7AI score0.00221EPSS

CVE•added 2020/06/01 3:15 p.m.•64 views

CVE-2020-9071

There is a few bytes out-of-bounds read vulnerability in some Huawei products. The software reads data past the end of the intended buffer when parsing certain message, an authenticated attacker could exploit this vulnerability by sending crafted messages to the device. Successful exploit may cause...

6.5CVSS6.3AI score0.00166EPSS

CVE•added 2020/07/08 5:15 p.m.•61 views

CVE-2019-19416

The SIP module of some Huawei products have a denial of service (DoS) vulnerability. A remote attacker could exploit these three vulnerabilities by sending the specially crafted messages to the affected device. Due to the insufficient verification of the packets, successful exploit could allow the ...

7.5CVSS7.7AI score0.00358EPSS

CVE•added 2017/12/22 5:29 p.m.•59 views

CVE-2017-15317

AR120-S V200R006C10, V200R007C00, V200R008C20, V200R008C30; AR1200 V200R006C10, V200R006C13, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30; AR1200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30; AR150 V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C...

7.8CVSS7.5AI score0.0015EPSS

CVE•added 2018/01/30 5:29 p.m.•55 views

CVE-2014-4705

Multiple heap-based buffer overflows in the eSap software platform in Huawei Campus S9300, S7700, S9700, S5300, S5700, S6300, and S6700 series switches; AR150, AR160, AR200, AR1200, AR2200, AR3200, AR530, NetEngine16EX, SRG1300, SRG2300, and SRG3300 series routers; and WLAN AC6005, AC6605, and ACU2...

7.8CVSS7.4AI score0.00307EPSS

CVE•added 2019/11/13 5:15 p.m.•55 views

CVE-2019-5293

Some Huawei products have a memory leak vulnerability when handling some messages. A remote attacker with operation privilege could exploit the vulnerability by sending specific messages continuously. Successful exploit may cause some service to be abnormal.

6.5CVSS6.3AI score0.00385EPSS

CVE•added 2018/04/24 3:29 p.m.•54 views

CVE-2017-17258

Huawei AR120-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR1200 V200R006C10, V200R006C13, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR1200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR150 V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V2...

7.5CVSS7.4AI score0.00147EPSS

CVE•added 2018/04/24 3:29 p.m.•53 views

CVE-2017-17257

7.5CVSS7.4AI score0.00265EPSS

CVE•added 2020/01/03 3:15 p.m.•53 views

CVE-2019-5304

Some Huawei products have a buffer error vulnerability. An unauthenticated, remote attacker could send specific MPLS Echo Request messages to the target products. Due to insufficient input validation of some parameters in the messages, successful exploit may cause the device to reset.

7.8CVSS7.5AI score0.0024EPSS

CVE•added 2018/04/24 3:29 p.m.•52 views

CVE-2017-17254

7.5CVSS7.4AI score0.00148EPSS

CVE•added 2018/04/24 3:29 p.m.•52 views

CVE-2017-17256

7.5CVSS7.4AI score0.00265EPSS

CVE•added 2018/02/15 4:29 p.m.•52 views

CVE-2017-17301

Huawei AR120-S V200R005C32, V200R006C10, V200R007C00, V200R008C20, AR1200 V200R005C20, V200R005C32, V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, AR1200-S V200R005C32, V200R006C10, V200R007C00, V200R008C20, AR150 V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, AR...

9.8CVSS9.4AI score0.00221EPSS

CVE•added 2019/11/13 5:15 p.m.•52 views

CVE-2019-5294

There is an out of bound read vulnerability in some Huawei products. A remote, unauthenticated attacker may send a corrupt or crafted message to the affected products. Due to a buffer read overflow error when parsing the message, successful exploit may cause some service to be abnormal.

7.5CVSS7.7AI score0.00453EPSS

CVE•added 2018/02/15 4:29 p.m.•51 views

CVE-2017-15331

5.3CVSS5.2AI score0.00336EPSS

CVE•added 2018/02/15 4:29 p.m.•51 views

CVE-2017-17287

Huawei AR120-S V200R005C32, V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR1200 V200R005C32, V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR1200-S V200R005C32, V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR150 V200R005C32, V200R006C10, V200R007C00, V2...

5.3CVSS5.2AI score0.00162EPSS

CVE•added 2018/02/15 4:29 p.m.•51 views

CVE-2017-17293

3.3CVSS4.6AI score0.00024EPSS

CVE•added 2018/02/15 4:29 p.m.•50 views

CVE-2017-17202

7.5CVSS7.5AI score0.00147EPSS

CVE•added 2018/04/24 3:29 p.m.•50 views

CVE-2017-17252

5.3CVSS5.9AI score0.00153EPSS

CVE•added 2018/02/15 4:29 p.m.•50 views

CVE-2017-17296

5.3CVSS5.3AI score0.00229EPSS

CVE•added 2018/03/09 5:29 p.m.•50 views

CVE-2017-17330

Huawei AR3200 V200R005C32; V200R006C10; V200R006C11; V200R007C00; V200R007C01; V200R007C02; V200R008C00; V200R008C10; V200R008C20; V200R008C30; NGFW Module V500R001C00; V500R001C20; V500R002C00 have a memory leak vulnerability. The software does not release allocated memory properly when parse XML ...

3.3CVSS4AI score0.00026EPSS

CVE•added 2017/11/22 7:29 p.m.•50 views

CVE-2017-8147

AC6005 V200R006C10SPC200,AC6605 V200R006C10SPC200,AR1200 with software V200R005C10CP0582T, V200R005C10HP0581T, V200R005C20SPC026T,AR200 with software V200R005C20SPC026T,AR3200 V200R005C20SPC026T,CloudEngine 12800 with software V100R003C00, V100R005C00, V100R005C10, V100R006C00, V200R001C00,CloudEng...

7.5CVSS7.4AI score0.0016EPSS

CVE•added 2020/07/08 5:15 p.m.•50 views

CVE-2019-19417

7.5CVSS7.7AI score0.00358EPSS

CVE•added 2020/04/27 4:15 p.m.•50 views

CVE-2020-9068

Huawei AR3200 products with versions of V200R007C00SPC900, V200R007C00SPCa00, V200R007C00SPCb00, V200R007C00SPCc00, V200R009C00SPC500 have an improper authentication vulnerability. Attackers need to perform some operations to exploit the vulnerability. Successful exploit may obtain certain permissi...

9.8CVSS9.5AI score0.00161EPSS

CVE•added 2018/02/15 4:29 p.m.•49 views

CVE-2017-17160

Huawei AR120-S V200R006C10, V200R007C00, AR1200 V200R006C10, V200R006C13, V200R007C00, V200R007C02, AR1200-S V200R006C10, V200R007C00, V200R008C20, AR150 V200R006C10, V200R007C00, V200R007C02, AR150-S V200R006C10, V200R007C00, AR160 V200R006C10, V200R006C12, V200R007C00, V200R007C02, AR200 V200R006...

7.1CVSS6.1AI score0.00265EPSS

CVE•added 2018/04/19 2:29 p.m.•49 views

CVE-2018-7920

Huawei AR1200 V200R006C10SPC300, AR160 V200R006C10SPC300, AR200 V200R006C10SPC300, AR2200 V200R006C10SPC300, AR3200 V200R006C10SPC300 devices have an improper resource management vulnerability. Due to the improper implementation of ACL mechanism, a remote attacker may send TCP messages to the manag...

7.5CVSS7.5AI score0.00277EPSS

CVE•added 2018/02/15 4:29 p.m.•48 views

CVE-2017-17151

Huawei AR100, AR100-S, AR110-S, AR120, AR120-S, AR1200, AR1200-S, AR150, AR150-S, AR160, AR200, AR200-S, AR2200, AR2200-S, AR3200, AR510, DP300, NetEngine16EX, RP200, SRG1300, SRG2300, SRG3300, TE30, TE40, TE50, TE60, TP3106, TP3206, ViewPoint 8660, and ViewPoint 9030 have an insufficient validatio...

5.9CVSS5.7AI score0.00129EPSS

CVE•added 2018/02/15 4:29 p.m.•48 views

CVE-2017-17294

3.3CVSS4.2AI score0.00023EPSS

CVE•added 2018/02/15 4:29 p.m.•48 views

CVE-2017-17297

5.3CVSS5.6AI score0.00162EPSS

CVE•added 2018/02/15 4:29 p.m.•47 views

CVE-2017-15341

Huawei AR3200 V200R008C20, V200R008C30, TE40 V600R006C00, TE50 V600R006C00, TE60 V600R006C00 have a denial of service vulnerability. The software decodes X.509 certificate in an improper way. A remote unauthenticated attacker could send a crafted X.509 certificate to the device. Successful exploit ...

7.5CVSS7.4AI score0.00146EPSS

CVE•added 2018/04/24 3:29 p.m.•47 views

CVE-2017-17251

5.3CVSS5.9AI score0.00154EPSS

CVE•added 2017/11/22 7:29 p.m.•47 views

CVE-2017-8163

AR120-S with software V200R006C10, V200R007C00, V200R008C20, V200R008C30,AR1200 with software V200R006C10, V200R006C13, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30,AR1200-S with software V200R006C10, V200R007C00, V200R008C20, V200R008C30,AR150 with software V200R006C10, V200R007...

6.8CVSS6.3AI score0.00181EPSS

CVE•added 2020/07/08 5:15 p.m.•47 views

CVE-2019-19415

7.5CVSS7.7AI score0.00358EPSS

CVE•added 2018/04/24 3:29 p.m.•46 views

CVE-2017-17253

7.5CVSS7.4AI score0.00147EPSS

CVE•added 2018/03/09 5:29 p.m.•45 views

CVE-2017-17250

Huawei AR120-S V200R005C32; AR1200 V200R005C32; AR1200-S V200R005C32; AR150 V200R005C32; AR150-S V200R005C32; AR160 V200R005C32; AR200 V200R005C32; AR200-S V200R005C32; AR2200-S V200R005C32; AR3200 V200R005C32; V200R007C00; AR510 V200R005C32; NetEngine16EX V200R005C32; SRG1300 V200R005C32; SRG2300 ...

7.1CVSS6.7AI score0.00174EPSS

CVE•added 2018/04/24 3:29 p.m.•45 views

CVE-2017-17255

7.5CVSS7.4AI score0.00148EPSS

CVE•added 2018/02/15 4:29 p.m.•45 views

CVE-2017-17299

7.5CVSS7.4AI score0.00147EPSS

CVE•added 2018/02/15 4:29 p.m.•44 views

CVE-2017-15332

5.3CVSS5.3AI score0.00336EPSS

CVE•added 2017/11/22 7:29 p.m.•44 views

CVE-2017-8162

6.5CVSS6.5AI score0.00314EPSS

CVE•added 2018/02/15 4:29 p.m.•43 views

CVE-2017-17286

5.3CVSS5.4AI score0.00087EPSS

CVE•added 2018/02/15 4:29 p.m.•43 views

CVE-2017-17292

3.3CVSS4.3AI score0.00023EPSS

CVE•added 2016/04/18 2:59 p.m.•42 views

CVE-2016-3950

Huawei AR3200 routers with software before V200R006C10SPC300 allow remote authenticated users to cause a denial of service (restart) via crafted packets.

6.8CVSS6.2AI score0.00216EPSS

CVE•added 2018/02/15 4:29 p.m.•42 views

CVE-2017-17291

5.5CVSS5.2AI score0.00021EPSS

CVE•added 2017/04/02 8:59 p.m.•41 views

CVE-2016-8797

Huawei AR3200 with software V200R007C00, V200R005C32, V200R005C20; S12700 with software V200R008C00, V200R007C00; S5300 with software V200R008C00, V200R007C00, V200R006C00; S5700 with software V200R008C00, V200R007C00, V200R006C00; S6300 with software V200R008C00, V200R007C00; S6700 with software V...

7.5CVSS7.5AI score0.00277EPSS

CVE•added 2018/02/15 4:29 p.m.•41 views

CVE-2017-15343

Huawei AR3200 with software V200R006C10, V200R006C11, V200R007C00, V200R007C01, V200R007C02, V200R008C00, V200R008C10, V200R008C20, V200R008C30 has an integer overflow vulnerability. The software does not sufficiently validate certain field in SCTP messages, a remote unauthenticated attacker could ...

7.8CVSS7.6AI score0.00268EPSS

CVE•added 2017/03/24 3:59 p.m.•40 views

CVE-2016-6206

Huawei AR3200 routers with software before V200R007C00SPC600 allow remote attackers to cause a denial of service or execute arbitrary code via a crafted packet.

10CVSS9.4AI score0.01406EPSS

CVE•added 2018/02/15 4:29 p.m.•40 views

CVE-2017-17295

5.3CVSS5.6AI score0.00162EPSS

CVE•added 2016/06/30 4:59 p.m.•39 views

CVE-2016-5368

Memory leak in Huawei AR3200 before V200R007C00SPC900 allows remote attackers to cause a denial of service (memory consumption) via a large number of crafted Multiprotocol Label Switching (MPLS) packets.

7.8CVSS7.3AI score0.00437EPSS

CVE•added 2018/02/15 4:29 p.m.•39 views

CVE-2017-17298

5.3CVSS5.6AI score0.00118EPSS

Total number of security vulnerabilities52