Vulnerabilities > Huawei > Fusionaccess
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-10-12 | CVE-2020-9090 | Incorrect Authorization vulnerability in Huawei Fusionaccess 6.5.1 FusionAccess version 6.5.1 has an improper authorization vulnerability. | 4.6 |
| 2020-06-15 | CVE-2020-1825 | Improper Input Validation vulnerability in Huawei Fusionaccess 6.5.1 FusionAccess with versions earlier than 6.5.1.SPC002 have a Denial of Service (DoS) vulnerability. | 4.0 |
| 2017-04-02 | CVE-2016-8779 | Command Injection vulnerability in Huawei FusionAccess Huawei FusionAccess with software V100R005C10 and V100R005C20 could allow remote attackers with specific permission to inject a Lightweight Directory Access Protocol (LDAP) operation command into a specific input variable to obtain sensitive information from the database. | 4.0 |
| 2017-04-02 | CVE-2015-7844 | Improper Input Validation vulnerability in Huawei Fusionaccess V100R005C10/V100R005C20 Huawei FusionAccess with software V100R005C10,V100R005C20 could allow attackers to craft and send a malformed HDP protocol packet to cause the virtual cloud desktop to be displaying an error and not usable. | 7.8 |
| 2016-09-07 | CVE-2016-6839 | HTTP Response Splitting vulnerability in Huawei Fusionaccess V100R005C10/V100R005C20/V100R005C30 CRLF injection vulnerability in Huawei FusionAccess before V100R006C00 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors. | 4.3 |