Vulnerabilities > Huawei
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-10-27 | CVE-2021-37122 | Use After Free vulnerability in Huawei products There is a use-after-free (UAF) vulnerability in Huawei products. | 6.5 |
| 2021-10-27 | CVE-2021-37124 | Path Traversal vulnerability in Huawei PC Smart Full Scene and Pcmanager There is a path traversal vulnerability in Huawei PC product. | 6.5 |
| 2021-10-27 | CVE-2021-37127 | Improper Verification of Cryptographic Signature vulnerability in Huawei products There is a signature management vulnerability in some huawei products. | 7.2 |
| 2021-10-27 | CVE-2021-37129 | Out-of-bounds Write vulnerability in Huawei products There is an out of bounds write vulnerability in some Huawei products. | 7.5 |
| 2021-10-27 | CVE-2021-37130 | Path Traversal vulnerability in Huawei Fusioncube Firmware 6.0.2 There is a path traversal vulnerability in Huawei FusionCube 6.0.2.The vulnerability is due to that the software uses external input to construct a pathname that is intended to identify a directory that is located underneath a restricted parent directory, but the software does not properly validate the pathname. | 7.5 |
| 2021-10-27 | CVE-2021-37131 | Improper Neutralization of Formula Elements in a CSV File vulnerability in Huawei Imanager Neteco, Imanager Neteco 6000 and Manageone There is a CSV injection vulnerability in ManageOne, iManager NetEco and iManager NetEco 6000. | 6.8 |
| 2021-10-11 | CVE-2021-37123 | Improper Authentication vulnerability in Huawei Hero-Ct060 Firmware There is an improper authentication vulnerability in Hero-CT060 before 1.0.0.200. | 9.8 |
| 2021-09-28 | CVE-2021-37104 | Server-Side Request Forgery (SSRF) vulnerability in Huawei P40 Firmware 10.1.0.118(C00E116R3P3) There is a server-side request forgery vulnerability in HUAWEI P40 versions 10.1.0.118(C00E116R3P3). | 7.5 |
| 2021-09-28 | CVE-2021-37105 | Unrestricted Upload of File with Dangerous Type vulnerability in Huawei Fusioncompute 6.5.0/6.5.1/8.0.0 There is an improper file upload control vulnerability in FusionCompute 6.5.0, 6.5.1 and 8.0.0. | 7.5 |
| 2021-09-28 | CVE-2021-37106 | Command Injection vulnerability in Huawei Fusioncompute There is a command injection vulnerability in CMA service module of FusionCompute 6.3.0, 6.3.1, 6.5.0 and 8.0.0 when processing the default certificate file. | 7.2 |