Espace 7950 Firmware@v200r003c30 Security Vulnerabilities and Issues — Espace 7950 Firmware@v200r003c30 CVE List

Lucene search

HuaweiEspace 7950 Firmwarev200r003c30

7 matches found

CVE•added 2018/03/09 5:29 p.m.•45 views

CVE-2017-17223

Huawei eSpace 7910 V200R003C30; eSpace 7950 V200R003C30; eSpace 8950 V200R003C00; V200R003C30 have a directory traversal vulnerability. An authenticated, remote attacker can craft specific URL to the affected products. Due to insufficient verification of the URL, successful exploit will upload and ...

8.8CVSS8.4AI score0.00507EPSS

CVE•added 2017/11/22 7:29 p.m.•44 views

CVE-2017-2722

DP300 V500R002C00,TE60 with software V100R001C01, V100R001C10, V100R003C00, V500R002C00 and V600R006C00,TP3106 with software V100R001C06 and V100R002C00,ViewPoint 9030 with software V100R011C02, V100R011C03,eCNS210_TD with software V100R004C10,eSpace 7950 with software V200R003C00 and V200R003C30,e...

8.8CVSS8.8AI score0.00477EPSS

CVE•added 2018/03/09 5:29 p.m.•43 views

CVE-2017-17221

Import Signal Tone function in Huawei eSpace 7950 V200R003C30; eSpace 8950 V200R003C00; V200R003C30 has a remote code execution vulnerability. An authenticated, remote attacker can craft and send the packets to the affected products after the Signal Tone is uploaded. Due to insufficient verificatio...

8.8CVSS9AI score0.00853EPSS

CVE•added 2018/11/27 10:29 p.m.•39 views

CVE-2018-7959

There is a short key vulnerability in Huawei eSpace product. An unauthenticated, remote attacker launches man-in-the-middle attack to intercept and decrypt the call information when the user enables SRTP to make a call. Successful exploitation may cause sensitive information leak.

5.9CVSS5.5AI score0.00061EPSS

CVE•added 2018/03/09 5:29 p.m.•38 views

CVE-2017-17222

Import Language Package function in Huawei eSpace 7950 V200R003C30; eSpace 8950 V200R003C00; V200R003C30 has a remote code execution vulnerability. An authenticated, remote attacker can craft and send the packets to the affected products after Language Package is uploaded. Due to insufficient verif...

8.8CVSS9AI score0.00853EPSS

CVE•added 2018/11/27 10:29 p.m.•34 views

CVE-2018-7958

There is an anonymous TLS cipher suites supported vulnerability in Huawei eSpace product. An unauthenticated, remote attacker launches man-in-the-middle attack to hijack the connection from a client when the user signs up to log in by TLS. Due to insufficient authentication, which may be exploited ...

7.4CVSS7.3AI score0.00164EPSS

CVE•added 2018/11/27 10:29 p.m.•31 views

CVE-2018-7960

There is a SRTP icon display vulnerability in Huawei eSpace product. An unauthenticated, remote attacker launches man-in-the-middle attack to intercept the packets in non-secure transmission mode. Successful exploitation may intercept and tamper with the call information, eventually cause sensitive...

7.4CVSS7.2AI score0.00059EPSS