Vulnerabilities > Huawei > Medium

DATE CVE VULNERABILITY TITLE RISK
2018-03-20 CVE-2017-17319 Information Exposure vulnerability in Huawei P9 Firmware
Huawei P9 smartphones with the versions before EVA-AL10C00B399SP02 have an information disclosure vulnerability.
local
low complexity
huawei CWE-200
5.5
5.5
2018-03-20 CVE-2017-17307 Out-of-bounds Read vulnerability in Huawei Vns-L21 Firmware Vnsl21Autc555B141
Some Huawei Smartphones with software of VNS-L21AUTC555B141 have an out-of-bounds read vulnerability.
local
low complexity
huawei CWE-125
5.5
5.5
2018-03-20 CVE-2017-17306 Out-of-bounds Read vulnerability in Huawei Vns-L21 Firmware
Some Huawei Smartphones with software of VNS-L21AUTC555B141, VNS-L21C10B160, VNS-L21C66B160, VNS-L21C703B140 have an array out-of-bounds read vulnerability.
local
low complexity
huawei CWE-125
5.5
5.5
2018-03-09 CVE-2017-15323 Resource Exhaustion vulnerability in Huawei products
Huawei DP300 V500R002C00, NIP6600 V500R001C00, V500R001C20, V500R001C30, Secospace USG6500 V500R001C00, V500R001C20, V500R001C30, TE60 V100R001C01, V100R001C10, V100R003C00, V500R002C00, V600R006C00, TP3106 V100R001C06, V100R002C00, VP9660 V200R001C02, V200R001C30, V500R002C00, V500R002C10, ViewPoint 8660 V100R008C03, ViewPoint 9030 V100R011C02, V100R011C03, eCNS210_TD V100R004C10, eSpace U1981 V200R003C30 have a DoS vulnerability caused by memory exhaustion in some Huawei products.
local
low complexity
huawei CWE-400
5.5
5.5
2018-03-09 CVE-2017-15315 Missing Release of Resource after Effective Lifetime vulnerability in Huawei products
Patch module of Huawei NIP6300 V500R001C20SPC100, V500R001C20SPC200, NIP6600 V500R001C20SPC100, V500R001C20SPC200, Secospace USG6300 V500R001C20SPC100, V500R001C20SPC200, Secospace USG6500 V500R001C20SPC100, V500R001C20SPC200 has a memory leak vulnerability.
network
low complexity
huawei CWE-772
6.5
6.5
2018-03-09 CVE-2017-15314 Missing Release of Resource after Effective Lifetime vulnerability in Huawei products
Huawei DP300 V500R002C00, RP200 V500R002C00SPC200, V600R006C00, TE30 V100R001C10SPC300, V100R001C10SPC500, V100R001C10SPC600, V100R001C10SPC700, V500R002C00SPC200, V500R002C00SPC500, V500R002C00SPC600, V500R002C00SPC700, V500R002C00SPC900, V500R002C00SPCb00, V600R006C00, TE40 V500R002C00SPC600, V500R002C00SPC700, V500R002C00SPC900, V500R002C00SPCb00, V600R006C00, TE50 V500R002C00SPC600, V500R002C00SPC700, V500R002C00SPCb00, V600R006C00, TE60 V100R001C10, V500R002C00, V600R006C00 have a memory leak vulnerability due to memory don't be released when the XML parser process some node fail.
local
low complexity
huawei CWE-772
5.5
5.5
2018-03-09 CVE-2016-8785 Improper Input Validation vulnerability in Huawei products
Huawei S12700 V200R007C00, V200R008C00, S5700 V200R007C00, S7700 V200R002C00, V200R005C00, V200R006C00, V200R007C00, V200R008C00, S9700 V200R007C00 have an input validation vulnerability.
network
low complexity
huawei CWE-20
4.3
4.3
2018-03-09 CVE-2016-8784 Resource Management Errors vulnerability in Huawei Cloudengine 12800 Firmware
Huawei CloudEngine 12800 V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00 have a memory leak vulnerability.
low complexity
huawei CWE-399
4.3
4.3
2018-03-09 CVE-2016-8782 Resource Management Errors vulnerability in Huawei Cloudengine 12800 Firmware
Huawei CloudEngine 12800 V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00 have a memory leak vulnerability.
network
low complexity
huawei CWE-399
5.3
5.3
2018-03-09 CVE-2017-17328 Integer Overflow or Wraparound vulnerability in Huawei Mha-Al00A Firmware Mhaal00Ac00B125
Huawei smartphones with software of MHA-AL00AC00B125 have an integer overflow vulnerability.
local
low complexity
huawei CWE-190
5.5
5.5