Ngfw Module Firmware Security Vulnerabilities and Issues — Ngfw Module Firmware CVE List

Lucene search

HuaweiNgfw Module Firmware

22 matches found

CVE•added 2020/02/17 9:15 p.m.•88 views

CVE-2020-1856

Huawei NGFW Module, NIP6300, NIP6600, Secospace USG6500, Secospace USG6600, and USG9500 versions V500R001C30, V500R001C60, and V500R005C00 have an information leakage vulnerability. An attacker can exploit this vulnerability by sending specific request packets to affected devices. Successful exploi...

7.5CVSS7.3AI score0.00187EPSS

CVE•added 2021/03/22 7:15 p.m.•73 views

CVE-2021-22320

There is a denial of service vulnerability in Huawei products. A module cannot deal with specific messages correctly. Attackers can exploit this vulnerability by sending malicious messages to an affected module. This can lead to denial of service. Affected product include some versions of IPS Modul...

7.5CVSS7.3AI score0.00182EPSS

CVE•added 2020/07/08 5:15 p.m.•61 views

CVE-2019-19416

The SIP module of some Huawei products have a denial of service (DoS) vulnerability. A remote attacker could exploit these three vulnerabilities by sending the specially crafted messages to the affected device. Due to the insufficient verification of the packets, successful exploit could allow the ...

7.5CVSS7.7AI score0.00358EPSS

CVE•added 2018/04/24 3:29 p.m.•54 views

CVE-2017-17258

Huawei AR120-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR1200 V200R006C10, V200R006C13, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR1200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR150 V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V2...

7.5CVSS7.4AI score0.00147EPSS

CVE•added 2018/04/24 3:29 p.m.•53 views

CVE-2017-17257

7.5CVSS7.4AI score0.00265EPSS

CVE•added 2020/01/03 3:15 p.m.•53 views

CVE-2019-5304

Some Huawei products have a buffer error vulnerability. An unauthenticated, remote attacker could send specific MPLS Echo Request messages to the target products. Due to insufficient input validation of some parameters in the messages, successful exploit may cause the device to reset.

7.8CVSS7.5AI score0.0024EPSS

CVE•added 2018/04/24 3:29 p.m.•52 views

CVE-2017-17254

7.5CVSS7.4AI score0.00148EPSS

CVE•added 2018/04/24 3:29 p.m.•52 views

CVE-2017-17256

7.5CVSS7.4AI score0.00265EPSS

CVE•added 2020/07/08 5:15 p.m.•50 views

CVE-2019-19417

7.5CVSS7.7AI score0.00358EPSS

CVE•added 2021/10/27 1:15 a.m.•50 views

CVE-2021-37129

There is an out of bounds write vulnerability in some Huawei products. The vulnerability is caused by a function of a module that does not properly verify input parameter. Successful exploit could cause out of bounds write leading to a denial of service condition.Affected product versions include:I...

7.5CVSS7.4AI score0.00182EPSS

CVE•added 2020/07/08 5:15 p.m.•47 views

CVE-2019-19415

7.5CVSS7.7AI score0.00358EPSS

CVE•added 2016/05/23 7:59 p.m.•46 views

CVE-2016-4577

Buffer overflow in the Smart DNS functionality in the Huawei NGFW Module and Secospace USG6300, USG6500, USG6600, and USG9500 firewalls with software before V500R001C20SPC100 allows remote attackers to cause a denial of service or execute arbitrary code via a crafted packet, related to "illegitimat...

7.5CVSS8AI score0.00125EPSS

CVE•added 2018/02/15 4:29 p.m.•46 views

CVE-2017-17154

IKEv2 in Huawei IPS Module V500R001C00, V500R001C00SPC200, V500R001C00SPC300, V500R001C00SPC500, V500R001C00SPH303, V500R001C00SPH508, V500R001C20, V500R001C20SPC100, V500R001C20SPC100PWE, V500R001C20SPC200, V500R001C20SPC200B062, V500R001C20SPC200PWE, V500R001C20SPC300B078, V500R001C20SPC300PWE, N...

7.5CVSS7.3AI score0.00182EPSS

CVE•added 2018/04/24 3:29 p.m.•46 views

CVE-2017-17253

7.5CVSS7.4AI score0.00147EPSS

CVE•added 2018/04/24 3:29 p.m.•45 views

CVE-2017-17255

7.5CVSS7.4AI score0.00148EPSS

CVE•added 2018/02/15 4:29 p.m.•42 views

CVE-2017-15348

Huawei IPS Module V500R001C00, NGFW Module V500R001C00, NIP6300 V500R001C00, NIP6600 V500R001C00, Secospace USG6300 V500R001C00, Secospace USG6500 V500R001C00, Secospace USG6600 V500R001C00, USG9500 V500R001C00 have an insufficient input validation vulnerability. An unauthenticated, remote attacker...

7.8CVSS7.5AI score0.0015EPSS

CVE•added 2018/02/15 4:29 p.m.•42 views

CVE-2017-17157

7.5CVSS7.3AI score0.00182EPSS

CVE•added 2018/02/15 4:29 p.m.•41 views

CVE-2017-17153

7.5CVSS7.3AI score0.00182EPSS

CVE•added 2018/02/15 4:29 p.m.•41 views

CVE-2017-17155

7.5CVSS7.3AI score0.00182EPSS

CVE•added 2018/07/31 2:29 p.m.•40 views

CVE-2018-7994

Some Huawei products IPS Module V500R001C50; NGFW Module V500R001C50; V500R002C10; NIP6300 V500R001C50; NIP6600 V500R001C50; NIP6800 V500R001C50; Secospace USG6600 V500R001C50; USG9500 V500R001C50 have a memory leak vulnerability. The software does not release allocated memory properly when process...

7.8CVSS7.4AI score0.00281EPSS

CVE•added 2021/03/22 6:15 p.m.•39 views

CVE-2020-9213

There is a denial of service vulnerability in some huawei products. In specific scenarios, due to the improper handling of the packets, an attacker may craft many specific packets. Successful exploit may cause some services to be abnormal. Affected products include some versions of NGFW Module, NIP...

7.5CVSS7.4AI score0.00182EPSS

CVE•added 2018/02/15 4:29 p.m.•38 views

CVE-2017-17156

7.5CVSS7.3AI score0.00182EPSS