Vulnerabilities > H3C

DATE CVE VULNERABILITY TITLE RISK
2022-08-25 CVE-2022-37070 OS Command Injection vulnerability in H3C Gr-1200W Firmware
H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a command injection vulnerability via the param parameter at DelL2tpLNSList.
network
low complexity
h3c CWE-78
critical
9.8
2022-08-25 CVE-2022-37071 Out-of-bounds Write vulnerability in H3C Gr-1200W Firmware
H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a stack overflow via the function UpdateOne2One.
network
low complexity
h3c CWE-787
critical
9.8
2022-08-25 CVE-2022-37072 Out-of-bounds Write vulnerability in H3C Gr-1200W Firmware
H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a stack overflow via the function UpdateWanLinkspyMulti.
network
low complexity
h3c CWE-787
critical
9.8
2022-08-25 CVE-2022-37073 Out-of-bounds Write vulnerability in H3C Gr-1200W Firmware
H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a stack overflow via the function UpdateWanModeMulti.
network
low complexity
h3c CWE-787
critical
9.8
2022-08-25 CVE-2022-37074 Out-of-bounds Write vulnerability in H3C Gr-1200W Firmware
H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a stack overflow via the function switch_debug_info_set.
local
low complexity
h3c CWE-787
7.8
2022-07-20 CVE-2022-34599 Out-of-bounds Write vulnerability in H3C Magic R200 Firmware R200V200R004L02
H3C Magic R200 R200V200R004L02 was discovered to contain a stack overflow via the EdittriggerList interface at /goform/aspForm.
network
low complexity
h3c CWE-787
critical
9.8
2022-07-20 CVE-2022-34600 Out-of-bounds Write vulnerability in H3C Magic R200 Firmware R200V200R004L02
H3C Magic R200 R200V200R004L02 was discovered to contain a stack overflow via the EditSTList interface at /goform/aspForm.
network
low complexity
h3c CWE-787
critical
9.8
2022-07-20 CVE-2022-34601 Out-of-bounds Write vulnerability in H3C Magic R200 Firmware R200V200R004L02
H3C Magic R200 R200V200R004L02 was discovered to contain a stack overflow via the Delstlist interface at /goform/aspForm.
network
low complexity
h3c CWE-787
critical
9.8
2022-07-20 CVE-2022-34602 Out-of-bounds Write vulnerability in H3C Magic R200 Firmware R200V200R004L02
H3C Magic R200 R200V200R004L02 was discovered to contain a stack overflow via the ipqos_lanip_editlist interface at /goform/aspForm.
network
low complexity
h3c CWE-787
critical
9.8
2022-07-20 CVE-2022-34603 Out-of-bounds Write vulnerability in H3C Magic R200 Firmware R200V200R004L02
H3C Magic R200 R200V200R004L02 was discovered to contain a stack overflow via the DelDNSHnList interface at /goform/aspForm.
network
low complexity
h3c CWE-787
critical
9.8