Page 6 of 31 results (0.004 seconds)

CVSS: 4.9EPSS: 0%CPEs: 29EXPL: 0

Huawei AR routers with software before V200R007C00SPC100; Quidway S9300 routers with software before V200R009C00; S12700 routers with software before V200R008C00SPC500; S9300, Quidway S5300, and S5300 routers with software before V200R007C00; and S5700 routers with software before V200R007C00SPC500 makes it easier for remote authenticated administrators to obtain encryption keys and ciphertext passwords via vectors related to key storage. Routers Huawei AR con software en versiones anteriores a V200R007C00SPC100; routers Quidway S9300 con software en versiones anteriores a V200R009C00; routers S12700 con software en versiones anteriores a V200R008C00SPC500; routers S9300, Quidway S5300 y S5300 con software en versiones anteriores a V200R007C00 y routers S5700 con software en versiones anteriores a V200R007C00SPC500 facilita a administradores remotos autenticados obtener las claves de cifrado y contraseñas de texto cifrado a través de vectores relacionados con el almacenamiento de claves. • http://www.huawei.com/en/psirt/security-advisories/hw-455876 http://www.securityfocus.com/bid/76897 • CWE-326: Inadequate Encryption Strength •

CVSS: 4.9EPSS: 0%CPEs: 29EXPL: 0

Huawei AR routers with software before V200R007C00SPC100; Quidway S9300 routers with software before V200R009C00; S12700 routers with software before V200R008C00SPC500; S9300, Quidway S5300, and S5300 routers with software before V200R007C00; and S5700 routers with software before V200R007C00SPC500 make it easier for remote authenticated administrators to obtain and decrypt passwords by leveraging selection of a reversible encryption algorithm. Routers Huawei AR con software en versiones anteriores a V200R007C00SPC100; routers Quidway S9300 con software en versiones anteriores a V200R009C00; routers S12700 con software en versiones anteriores aV200R008C00SPC500; routers S9300, Quidway S5300 y S5300 con software en versiones anteriores aV200R007C00 y routers S5700 con software en versiones anteriores aV200R007C00SPC500 facilita a administradores remotos autenticados obtener y descifrar contraseñas aprovechando la selección de un algoritmos de cifrado reversible. • http://www.huawei.com/en/psirt/security-advisories/hw-455876 http://www.securityfocus.com/bid/76897 • CWE-326: Inadequate Encryption Strength •

CVSS: 7.5EPSS: 0%CPEs: 58EXPL: 0

Memory leak in Huawei S9300, S5300, S5700, S6700, S7700, S9700, and S12700 devices allows remote attackers to cause a denial of service (memory consumption and restart) via a large number of malformed packets. Fuga de memoria en dispositivos Huawei S9300, S5300, S5700, S6700, S7700, S9700 y S12700 permite a atacantes remotos provocar una denegación de servicio (consumo de memoria y reinicio) a través de un gran número de paquetes malformados. • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160914-01-sep-en http://www.securityfocus.com/bid/92968 • CWE-399: Resource Management Errors •

CVSS: 5.3EPSS: 0%CPEs: 11EXPL: 0

Huawei S7700, S9300, S9700, and S12700 devices with software before V200R008C00SPC500 use random numbers with insufficient entropy to generate self-signed certificates, which makes it easier for remote attackers to discover private keys by leveraging knowledge of a certificate. Dispositivos Huawei S7700, S9300, S9700 y S12700 con software en versiones anteriores a V200R008C00SPC500 utiliza números aleatorios con entropía insuficiente para generar certificados con auto-firma, lo que facilita a atacantes remotos descubrir claves privadas mediante el aprovechamiento del conocimiento un certificado. • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160810-01-certificate-en http://www.securityfocus.com/bid/92438 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •

CVSS: 8.1EPSS: 0%CPEs: 7EXPL: 0

Huawei S12700 switches with software before V200R008C00SPC500 and S5700 switches with software before V200R005SPH010, when the debug switch is enabled, allows remote attackers to cause a denial of service or execute arbitrary code via crafted DNS packets. Huawei S12700 switches con software en versiones anteriores a V200R008C00SPC500 y switches S5700 con software en versiones anteriores a V200R005SPH010, cuando el depurado del switch está activado, permite a atacantes remotos provocar una denegación de servicio o ejecutar código arbitrario a través de un paquete DNS manipulado. • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160427-01-dns-en • CWE-20: Improper Input Validation •