Vulnerabilities > Huawei
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-04-02 | CVE-2014-3223 | Data Processing Errors vulnerability in Huawei products Huawei S9300 with software before V100R006SPH013 and S2300,S3300,S5300,S6300 with software before V100R006SPH010 support Y.1731 and therefore have the Y.1731 vulnerability in processing special packets. | 7.5 |
| 2017-04-02 | CVE-2014-3222 | Permissions, Privileges, and Access Controls vulnerability in Huawei Espace Meeting V100R001C03Spc201 In Huawei eSpace Meeting with software V100R001C03SPC201 and the earlier versions, attackers that obtain the permissions assigned to common users can elevate privileges to access and set specific key resources. | 7.0 |
| 2017-04-02 | CVE-2014-3221 | Resource Management Errors vulnerability in Huawei Eudemon8000E Firmware V200R001C01Spc800 Huawei Eudemon8000E firewall with software V200R001C01SPC800 and earlier versions allows users to log in to the device using Telnet or SSH. | 7.5 |
| 2017-03-24 | CVE-2016-6206 | Improper Input Validation vulnerability in Huawei Ar3200 Firmware Huawei AR3200 routers with software before V200R007C00SPC600 allow remote attackers to cause a denial of service or execute arbitrary code via a crafted packet. | 9.8 |
| 2017-03-24 | CVE-2015-8678 | Improper Input Validation vulnerability in Huawei Mate S Firmware and P8 Firmware The ION driver in Huawei P8 smartphones with software GRA-TL00 before GRA-TL00C01B230, GRA-CL00 before GRA-CL00C92B230, GRA-CL10 before GRA-CL10C92B230, GRA-UL00 before GRA-UL00C00B230, and GRA-UL10 before GRA-UL10C00B230 and Mate S smartphones with software CRR-TL00 before CRR-TL00C01B160SP01, CRR-UL00 before CRR-UL00C00B160, and CRR-CL00 before CRR-CL00C92B161 allows remote attackers to cause a denial of service (crash) via a crafted application. | 5.5 |
| 2017-03-20 | CVE-2016-2406 | Permission Issues vulnerability in Huawei Document Security Management V100R002C03Spc005/V100R002C05Spc661 The permission control module in Huawei Document Security Management (aka DSM) before V100R002C05SPC670 allows remote authenticated users to obtain sensitive information from encrypted documents by leveraging incorrect control of permissions on the PrintScreen button. | 4.3 |
| 2017-01-27 | CVE-2016-5822 | Resource Management Errors vulnerability in Huawei Oceanstor 5800 V3 V300R002C10 Huawei Oceanstor 5800 before V300R002C10SPC100 allows remote attackers to cause a denial of service (CPU consumption) via a large number of crafted HTTP packets. | 7.5 |
| 2016-10-03 | CVE-2016-8280 | Path Traversal vulnerability in Huawei Esight V300R002C00/V300R003C10/V300R003C20 Directory traversal vulnerability in Huawei eSight before V300R003C20SPC005 allows remote authenticated users to read arbitrary files via unspecified vectors. | 6.5 |
| 2016-10-03 | CVE-2016-8278 | Improper Input Validation vulnerability in Huawei Usg9520, Usg9560 and Usg9580 Huawei USG9520, USG9560, and USG9580 unified security gateways with software before V300R001C01SPCa00 allow remote attackers to cause a denial of service (device restart) via an unspecified URL. | 7.5 |
| 2016-10-03 | CVE-2016-8277 | Improper Input Validation vulnerability in Huawei Usg9520, Usg9560 and Usg9580 Huawei USG9520, USG9560, and USG9580 unified security gateways with software before V300R001C01SPCa00 allow remote authenticated users to cause a denial of service (device restart) via an unspecified command parameter. | 6.5 |