Secospace Usg6600 Firmware Security Vulnerabilities and Issues — Secospace Usg6600 Firmware CVE List

Lucene search

HuaweiSecospace Usg6600 Firmware

9 matches found

CVE•added 2021/04/08 7:15 p.m.•68 views

CVE-2021-22312

There is a memory leak vulnerability in some Huawei products. An authenticated remote attacker may exploit this vulnerability by sending specific message to the affected product. Due to not release the allocated memory properly, successful exploit may cause some service abnormal. Affected product i...

6.5CVSS6.4AI score0.00186EPSS

CVE•added 2020/12/24 4:15 p.m.•56 views

CVE-2020-9201

There is an out-of-bounds read vulnerability in some versions of NIP6800, Secospace USG6600 and USG9500. The software reads data past the end of the intended buffer when parsing DHCP messages including crafted parameter. Successful exploit could cause certain service abnormal.

6.5CVSS6.5AI score0.00047EPSS

CVE•added 2021/01/13 11:15 p.m.•52 views

CVE-2020-1866

There is an out-of-bounds read vulnerability in several products. The software reads data past the end of the intended buffer when parsing certain crafted DHCP messages. Successful exploit could cause certain service abnormal. Affected product versions include:NIP6800 versions V500R001C30,V500R001C...

6.5CVSS6.5AI score0.00041EPSS

CVE•added 2020/06/15 3:15 p.m.•51 views

CVE-2020-9075

Huawei products Secospace USG6300;USG6300E with versions of V500R001C30,V500R001C50,V500R001C60,V500R001C80,V500R005C00,V500R005C10;V600R006C00 have a vulnerability of insufficient input verification. An attacker with limited privilege can exploit this vulnerability to access a specific directory. ...

6.5CVSS6.3AI score0.00153EPSS

CVE•added 2017/04/02 8:59 p.m.•45 views

CVE-2016-8802

The security policy processing module in Huawei Secospace USG6300 with software V500R001C20SPC100, V500R001C20SPC101, V500R001C20SPC200; Secospace USG6500 with software V500R001C20SPC100, V500R001C20SPC101, V500R001C20SPC200; Secospace USG6600 with software V500R001C20SPC100, V500R001C20SPC101, V50...

6.8CVSS6.6AI score0.00208EPSS

CVE•added 2020/11/13 3:15 p.m.•44 views

CVE-2020-9127

Some Huawei products have a command injection vulnerability. Due to insufficient input validation, an attacker with high privilege may inject some malicious codes in some files of the affected products. Successful exploit may cause command injection.Affected product versions include:NIP6300 version...

6.7CVSS6.6AI score0.00113EPSS

CVE•added 2017/04/02 8:59 p.m.•43 views

CVE-2016-8781

Huawei Secospace USG6300 with software V500R001C20 and V500R001C20SPC200PWE, Secospace USG6500 with software V500R001C20, Secospace USG6600 with software V500R001C20 and V500R001C20SPC200PWE allow remote attackers with specific permission to log in to a device and deliver a large number of unspecif...

6.5CVSS6.5AI score0.00276EPSS

CVE•added 2021/05/27 1:15 p.m.•39 views

CVE-2021-22411

There is an out-of-bounds write vulnerability in some Huawei products. The code of a module have a bad judgment logic. Attackers can exploit this vulnerability by performing multiple abnormal activities to trigger the bad logic and cause out-of-bounds write. This may compromise the normal service o...

6.5CVSS6.5AI score0.00174EPSS

CVE•added 2020/07/18 1:16 a.m.•37 views

CVE-2020-9101

There is an out-of-bounds write vulnerability in some products. An unauthenticated attacker crafts malformed packets with specific parameter and sends the packets to the affected products. Due to insufficient validation of packets, which may be exploited to cause the process reboot. Affected produc...

6.5CVSS6.5AI score0.00037EPSS