CVSS: 4.9EPSS: 0%CPEs: 29EXPL: 0CVE-2015-8085
https://notcve.org/view.php?id=CVE-2015-8085
03 Oct 2016 — Huawei AR routers with software before V200R007C00SPC100; Quidway S9300 routers with software before V200R009C00; S12700 routers with software before V200R008C00SPC500; S9300, Quidway S5300, and S5300 routers with software before V200R007C00; and S5700 routers with software before V200R007C00SPC500 make it easier for remote authenticated administrators to obtain and decrypt passwords by leveraging selection of a reversible encryption algorithm. Routers Huawei AR con software en versiones anteriores a V200R0... • http://www.huawei.com/en/psirt/security-advisories/hw-455876 • CWE-326: Inadequate Encryption Strength •
CVSS: 4.9EPSS: 0%CPEs: 29EXPL: 0CVE-2015-8086
https://notcve.org/view.php?id=CVE-2015-8086
03 Oct 2016 — Huawei AR routers with software before V200R007C00SPC100; Quidway S9300 routers with software before V200R009C00; S12700 routers with software before V200R008C00SPC500; S9300, Quidway S5300, and S5300 routers with software before V200R007C00; and S5700 routers with software before V200R007C00SPC500 makes it easier for remote authenticated administrators to obtain encryption keys and ciphertext passwords via vectors related to key storage. Routers Huawei AR con software en versiones anteriores a V200R007C00S... • http://www.huawei.com/en/psirt/security-advisories/hw-455876 • CWE-326: Inadequate Encryption Strength •
CVSS: 6.8EPSS: 0%CPEs: 18EXPL: 0CVE-2016-6901
https://notcve.org/view.php?id=CVE-2016-6901
26 Sep 2016 — Format string vulnerability in Huawei AR100, AR120, AR150, AR200, AR500, AR550, AR1200, AR2200, AR2500, AR3200, and AR3600 routers with software before V200R007C00SPC900 and NetEngine 16EX routers with software before V200R007C00SPC900 allows remote authenticated users to cause a denial of service via format string specifiers in vectors involving partial commands. Vulnerabilidad de formato de cadena en routers Huawei AR100, AR120, AR150, AR200, AR500, AR550, AR1200, AR2200, AR2500, AR3200 y AR3600 con softw... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160824-01-vrp-en • CWE-20: Improper Input Validation •
CVSS: 6.5EPSS: 0%CPEs: 10EXPL: 0CVE-2015-8228
https://notcve.org/view.php?id=CVE-2015-8228
24 Nov 2015 — Directory traversal vulnerability in the SFTP server in Huawei AR 120, 150, 160, 200, 500, 1200, 2200, 3200, and 3600 routers with software before V200R006SPH003 allows remote authenticated users to access arbitrary directories via unspecified vectors. Vulnerabilidad de salto de directorio en el servidor SFTP en routers Huawei AR 120, 150, 160, 200, 500, 1200, 2200, 3200 y 3600 con software anterior a V200R006SPH003 permite a usuarios remotos autenticados acceder a directorios arbitrarios a través de vector... • http://www1.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-461676.htm • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •