Usg9500 Firmware@v500r001c30 Security Vulnerabilities and Issues — Usg9500 Firmware@v500r001c30 CVE List

Lucene search

HuaweiUsg9500 Firmwarev500r001c30

40 matches found

CVE•added 2020/02/28 7:15 p.m.•104 views

CVE-2020-1860

NIP6800;Secospace USG6600;USG9500 products with versions of V500R001C30; V500R001C60SPC500; V500R005C00SPC100 have an access control bypass vulnerability. Attackers that can access to the internal network can exploit this vulnerability with careful deployment. Successful exploit may cause the acces...

7.5CVSS7.5AI score0.00108EPSS

CVE•added 2020/02/17 9:15 p.m.•88 views

CVE-2020-1856

Huawei NGFW Module, NIP6300, NIP6600, Secospace USG6500, Secospace USG6600, and USG9500 versions V500R001C30, V500R001C60, and V500R005C00 have an information leakage vulnerability. An attacker can exploit this vulnerability by sending specific request packets to affected devices. Successful exploi...

7.5CVSS7.3AI score0.00187EPSS

CVE•added 2019/12/26 7:15 p.m.•84 views

CVE-2019-5275

USG9500 with versions of V500R001C30;V500R001C60 have a denial of service vulnerability. Due to a flaw in the X.509 implementation in the affected products which can result in a heap buffer overflow when decoding a certificate, an attacker may exploit the vulnerability by a malicious certificate to...

7.5CVSS7.6AI score0.00258EPSS

CVE•added 2019/12/26 7:15 p.m.•78 views

CVE-2019-5272

USG9500 with versions of V500R001C30;V500R001C60 have a missing integrity checking vulnerability. The software of the affected products does not check the integrity which may allow an attacker with high privilege to make malicious modifications without detection.

4.9CVSS5AI score0.00067EPSS

CVE•added 2019/12/26 7:15 p.m.•76 views

CVE-2019-5274

USG9500 with versions of V500R001C30;V500R001C60 have a denial of service vulnerability. Due to a flaw in the X.509 implementation in the affected products which can result in an infinite loop, an attacker may exploit the vulnerability via a malicious certificate to perform a denial of service atta...

7.5CVSS7.3AI score0.00137EPSS

CVE•added 2019/12/26 7:15 p.m.•74 views

CVE-2019-5273

USG9500 with versions of V500R001C30;V500R001C60 have a denial of service vulnerability. Due to a flaw in the X.509 implementation in the affected products which can result in a large heap buffer overrun error, an attacker may exploit the vulnerability by a malicious certificate, resulting a denial...

7.5CVSS7.5AI score0.00183EPSS

CVE•added 2021/06/22 7:15 p.m.•64 views

CVE-2021-22342

There is an information leak vulnerability in Huawei products. A module does not deal with specific input sufficiently. High privilege attackers can exploit this vulnerability by performing some operations. This can lead to information leak. Affected product versions include: IPS Module versions V5...

4.9CVSS4.9AI score0.00138EPSS

CVE•added 2020/07/08 5:15 p.m.•61 views

CVE-2019-19416

The SIP module of some Huawei products have a denial of service (DoS) vulnerability. A remote attacker could exploit these three vulnerabilities by sending the specially crafted messages to the affected device. Due to the insufficient verification of the packets, successful exploit could allow the ...

7.5CVSS7.7AI score0.00358EPSS

CVE•added 2018/03/05 7:29 p.m.•60 views

CVE-2017-17137

PEM module of Huawei DP300 V500R002C00; IPS Module V500R001C00; V500R001C30; NGFW Module V500R001C00; V500R002C00; NIP6300 V500R001C00; V500R001C30; NIP6600 V500R001C00; V500R001C30; RP200 V500R002C00; V600R006C00; S12700 V200R007C00; V200R007C01; V200R008C00; V200R009C00; V200R010C00; S1700 V200R0...

5.5CVSS5.2AI score0.00017EPSS

CVE•added 2021/03/22 8:15 p.m.•56 views

CVE-2021-22321

There is a use-after-free vulnerability in a Huawei product. A module cannot deal with specific operations in special scenarios. Attackers can exploit this vulnerability by performing malicious operations. This can cause memory use-after-free, compromising normal service. Affected product include s...

5.3CVSS5.3AI score0.00207EPSS

CVE•added 2018/04/24 3:29 p.m.•54 views

CVE-2017-17258

Huawei AR120-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR1200 V200R006C10, V200R006C13, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR1200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR150 V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V2...

7.5CVSS7.4AI score0.00147EPSS

CVE•added 2018/04/24 3:29 p.m.•53 views

CVE-2017-17257

7.5CVSS7.4AI score0.00265EPSS

CVE•added 2018/04/24 3:29 p.m.•52 views

CVE-2017-17254

7.5CVSS7.4AI score0.00148EPSS

CVE•added 2018/04/24 3:29 p.m.•52 views

CVE-2017-17256

7.5CVSS7.4AI score0.00265EPSS

CVE•added 2018/02/15 4:29 p.m.•51 views

CVE-2017-15331

5.3CVSS5.2AI score0.00336EPSS

CVE•added 2020/06/08 2:15 p.m.•51 views

CVE-2020-9099

Huawei products IPS Module; NGFW Module; NIP6300; NIP6600; NIP6800; Secospace USG6300; Secospace USG6500; Secospace USG6600; USG9500 with versions of V500R001C00; V500R001C20; V500R001C30; V500R001C50; V500R001C60; V500R001C80; V500R005C00; V500R005C10; V500R005C20; V500R002C00; V500R002C10; V500R0...

9.8CVSS9.5AI score0.00161EPSS

CVE•added 2018/04/24 3:29 p.m.•50 views

CVE-2017-17252

5.3CVSS5.9AI score0.00153EPSS

CVE•added 2018/02/15 4:29 p.m.•50 views

CVE-2017-17296

5.3CVSS5.3AI score0.00229EPSS

CVE•added 2020/07/08 5:15 p.m.•50 views

CVE-2019-19417

7.5CVSS7.7AI score0.00358EPSS

CVE•added 2018/03/05 7:29 p.m.•48 views

CVE-2017-17135

5.5CVSS5.2AI score0.00021EPSS

CVE•added 2018/02/15 4:29 p.m.•48 views

CVE-2017-17297

5.3CVSS5.6AI score0.00162EPSS

CVE•added 2020/11/13 3:15 p.m.•48 views

CVE-2020-1847

There is a denial of service vulnerability in some Huawei products. There is no protection against the attack scenario of specific protocol. A remote, unauthorized attackers can construct attack scenarios, which leads to denial of service.Affected product versions include:NIP6300 versions V500R001C...

7.5CVSS7.3AI score0.00182EPSS

CVE•added 2018/02/15 4:29 p.m.•47 views

CVE-2017-15350

The Common Open Policy Service Protocol (COPS) module in Huawei DP300 V500R002C00, IPS Module V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, NGFW Module V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, NIP6300 V500R001C00, V500R001C20, V50...

5.3CVSS5.6AI score0.00162EPSS

CVE•added 2018/04/24 3:29 p.m.•47 views

CVE-2017-17251

5.3CVSS5.9AI score0.00154EPSS

CVE•added 2020/07/08 5:15 p.m.•47 views

CVE-2019-19415

7.5CVSS7.7AI score0.00358EPSS

CVE•added 2018/02/15 4:29 p.m.•46 views

CVE-2017-15339

The SIP module in Huawei DP300 V500R002C00, IPS Module V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, NGFW Module V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R002C00, V500R002C10, NIP6300 V500R001C00, V500R001C20, V500R001C30, V50...

4.3CVSS4.7AI score0.0019EPSS

CVE•added 2018/04/24 3:29 p.m.•46 views

CVE-2017-17253

7.5CVSS7.4AI score0.00147EPSS

CVE•added 2018/04/24 3:29 p.m.•45 views

CVE-2017-17255

7.5CVSS7.4AI score0.00148EPSS

CVE•added 2018/02/15 4:29 p.m.•44 views

CVE-2017-15332

5.3CVSS5.3AI score0.00336EPSS

CVE•added 2020/11/13 3:15 p.m.•44 views

CVE-2020-9127

Some Huawei products have a command injection vulnerability. Due to insufficient input validation, an attacker with high privilege may inject some malicious codes in some files of the affected products. Successful exploit may cause command injection.Affected product versions include:NIP6300 version...

6.7CVSS6.6AI score0.00113EPSS

CVE•added 2018/02/15 4:29 p.m.•43 views

CVE-2017-15335

The SIP backup feature in Huawei DP300 V500R002C00, IPS Module V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, NGFW Module V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R002C00, V500R002C10, NIP6300 V500R001C00, V500R001C20, V500R001...

5.3CVSS5.4AI score0.0019EPSS

CVE•added 2018/02/15 4:29 p.m.•43 views

CVE-2017-15336

5.3CVSS5.4AI score0.0019EPSS

CVE•added 2018/03/05 7:29 p.m.•42 views

CVE-2017-17138

PEM module of DP300 V500R002C00; IPS Module V500R001C00; V500R001C30; NGFW Module V500R001C00; V500R002C00; NIP6300 V500R001C00; V500R001C30; NIP6600 V500R001C00; V500R001C30; RP200 V500R002C00; V600R006C00; S12700 V200R007C00; V200R007C01; V200R008C00; V200R009C00; V200R010C00; S1700 V200R006C10; ...

5.5CVSS5.2AI score0.00012EPSS

CVE•added 2018/02/15 4:29 p.m.•41 views

CVE-2017-15338

4.3CVSS4.7AI score0.0019EPSS

CVE•added 2018/03/05 7:29 p.m.•41 views

CVE-2017-17136

5.5CVSS5.4AI score0.00016EPSS

CVE•added 2018/02/15 4:29 p.m.•40 views

CVE-2017-15337

4.3CVSS4.7AI score0.0019EPSS

CVE•added 2018/02/15 4:29 p.m.•40 views

CVE-2017-17295

5.3CVSS5.6AI score0.00162EPSS

CVE•added 2021/03/22 6:15 p.m.•39 views

CVE-2020-9213

There is a denial of service vulnerability in some huawei products. In specific scenarios, due to the improper handling of the packets, an attacker may craft many specific packets. Successful exploit may cause some services to be abnormal. Affected products include some versions of NGFW Module, NIP...

7.5CVSS7.4AI score0.00182EPSS

CVE•added 2018/02/15 4:29 p.m.•37 views

CVE-2017-15334

5.3CVSS5.4AI score0.0019EPSS

CVE•added 2020/07/18 1:16 a.m.•37 views

CVE-2020-9101

There is an out-of-bounds write vulnerability in some products. An unauthenticated attacker crafts malformed packets with specific parameter and sends the packets to the affected products. Due to insufficient validation of packets, which may be exploited to cause the process reboot. Affected produc...

6.5CVSS6.5AI score0.00037EPSS