CVSS: 6.8EPSS: 0%CPEs: 110EXPL: 0CVE-2017-8163
https://notcve.org/view.php?id=CVE-2017-8163
22 Nov 2017 — AR120-S with software V200R006C10, V200R007C00, V200R008C20, V200R008C30,AR1200 with software V200R006C10, V200R006C13, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30,AR1200-S with software V200R006C10, V200R007C00, V200R008C20, V200R008C30,AR150 with software V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30,AR150-S with software V200R006C10, V200R007C00, V200R008C20, V200R008C30,AR160 with software V200R006C10, V200R006C12, V200R007C00, V200R007C01, V200R007C02,... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171018-01-h323-en • CWE-125: Out-of-bounds Read •
CVSS: 6.5EPSS: 0%CPEs: 10EXPL: 0CVE-2015-8228
https://notcve.org/view.php?id=CVE-2015-8228
24 Nov 2015 — Directory traversal vulnerability in the SFTP server in Huawei AR 120, 150, 160, 200, 500, 1200, 2200, 3200, and 3600 routers with software before V200R006SPH003 allows remote authenticated users to access arbitrary directories via unspecified vectors. Vulnerabilidad de salto de directorio en el servidor SFTP en routers Huawei AR 120, 150, 160, 200, 500, 1200, 2200, 3200 y 3600 con software anterior a V200R006SPH003 permite a usuarios remotos autenticados acceder a directorios arbitrarios a través de vector... • http://www1.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-461676.htm • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •