CVSS: 7.5EPSS: 0%CPEs: 9EXPL: 0CVE-2017-15341
https://notcve.org/view.php?id=CVE-2017-15341
15 Feb 2018 — Huawei AR3200 V200R008C20, V200R008C30, TE40 V600R006C00, TE50 V600R006C00, TE60 V600R006C00 have a denial of service vulnerability. The software decodes X.509 certificate in an improper way. A remote unauthenticated attacker could send a crafted X.509 certificate to the device. Successful exploit could result in a denial of service on the device. Huawei AR3200 V200R008C20, V200R008C30, TE40 V600R006C00, TE50 V600R006C00 y TE60 V600R006C00 tienen una vulnerabilidad de denegación de servicio. • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171129-01-cert-en • CWE-295: Improper Certificate Validation •
CVSS: 7.5EPSS: 0%CPEs: 8EXPL: 0CVE-2017-15342
https://notcve.org/view.php?id=CVE-2017-15342
15 Feb 2018 — Huawei DP300 V500R002C00, TE60 V600R006C00, TP3106 V100R002C00, eSpace U1981 V200R003C30SPC100 have a denial of service vulnerability. The software does not correctly calculate the rest size in a buffer when handling SSL connections. A remote unauthenticated attacker could send a lot of crafted SSL messages to the device, successful exploit could cause no space in the buffer and then denial of service. Huawei DP300 V500R002C00, TE60 V600R006C00, TP3106 V100R002C00 y eSpace U1981 V200R003C30SPC100 tienen una... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171206-01-ssl-en • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 5.3EPSS: 0%CPEs: 88EXPL: 0CVE-2017-15350
https://notcve.org/view.php?id=CVE-2017-15350
15 Feb 2018 — The Common Open Policy Service Protocol (COPS) module in Huawei DP300 V500R002C00, IPS Module V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, NGFW Module V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, NIP6300 V500R001C00, V500R001C20, V500R001C30, V500R001C50, NIP6600 V500R001C00, V500R001C20, V500R001C30, V500R001C50, NIP6800 V500R001C50, RP200 V500R002C00, V600R006C00, SVN5600 V200R003C00, V200R003C10, SVN5800 V200R003C00, V200R003C10,SVN5800-C ... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171206-01-buffer-en • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 4.3EPSS: 0%CPEs: 34EXPL: 0CVE-2017-15353
https://notcve.org/view.php?id=CVE-2017-15353
15 Feb 2018 — Huawei DP300, V500R002C00, RP200, V500R002C00, V600R006C00, RSE6500, V500R002C00, TE30, V100R001C02, V100R001C10, V500R002C00, V600R006C00, TE40, V500R002C00, V600R006C00, TE50, V500R002C00, V600R006C00, TE60, V100R001C01, V100R001C10, V500R002C00, V600R006C00, TX50, V500R002C00, V600R006C00, VP9660, V500R002C00, V500R002C10, ViewPoint 8660, V100R008C03, ViewPoint 9030, V100R011C02, V100R011C03, Viewpoint 8660, V100R008C03 have an out-of-bounds read vulnerability. An attacker has to control the peer device ... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171115-01-h323-en • CWE-125: Out-of-bounds Read •
CVSS: 5.3EPSS: 0%CPEs: 21EXPL: 0CVE-2017-15354
https://notcve.org/view.php?id=CVE-2017-15354
15 Feb 2018 — Huawei DP300, V500R002C00, RP200, V600R006C00, TE30, V100R001C10, V500R002C00,V600R006C00, TE40, V500R002C00, V600R006C00, TE50, V500R002C00,V600R006C00, TE60, V100R001C10, V500R002C00, V600R006C00, TX50,V500R002C00, V600R006C00 have a buffer overflow vulnerability. An attacker may send specially crafted HTTP messages to the affected products. Due insufficient input validation of three different parameters in the messages, successful exploit may cause some service abnormal. Huawei DP300, V500R002C00, RP200,... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171108-02-http-en • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 5.3EPSS: 0%CPEs: 21EXPL: 0CVE-2017-15355
https://notcve.org/view.php?id=CVE-2017-15355
15 Feb 2018 — Huawei DP300, V500R002C00, RP200, V600R006C00, TE30, V100R001C10, V500R002C00,V600R006C00, TE40, V500R002C00, V600R006C00, TE50, V500R002C00,V600R006C00, TE60, V100R001C10, V500R002C00, V600R006C00, TX50,V500R002C00, V600R006C00 have a buffer overflow vulnerability. An attacker may send specially crafted HTTP messages to the affected products. Due insufficient input validation of three different parameters in the messages, successful exploit may cause some service abnormal. Huawei DP300, V500R002C00, RP200,... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171108-02-http-en • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 5.3EPSS: 0%CPEs: 21EXPL: 0CVE-2017-15356
https://notcve.org/view.php?id=CVE-2017-15356
15 Feb 2018 — Huawei DP300, V500R002C00, RP200, V600R006C00, TE30, V100R001C10, V500R002C00,V600R006C00, TE40, V500R002C00, V600R006C00, TE50, V500R002C00,V600R006C00, TE60, V100R001C10, V500R002C00, V600R006C00, TX50,V500R002C00, V600R006C00 have a buffer overflow vulnerability. An attacker may send specially crafted HTTP messages to the affected products. Due insufficient input validation of three different parameters in the messages, successful exploit may cause some service abnormal. Huawei DP300, V500R002C00, RP200,... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171108-02-http-en • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 5.9EPSS: 0%CPEs: 454EXPL: 0CVE-2017-17151
https://notcve.org/view.php?id=CVE-2017-17151
15 Feb 2018 — Huawei AR100, AR100-S, AR110-S, AR120, AR120-S, AR1200, AR1200-S, AR150, AR150-S, AR160, AR200, AR200-S, AR2200, AR2200-S, AR3200, AR510, DP300, NetEngine16EX, RP200, SRG1300, SRG2300, SRG3300, TE30, TE40, TE50, TE60, TP3106, TP3206, ViewPoint 8660, and ViewPoint 9030 have an insufficient validation vulnerability. Since packet validation is insufficient, an unauthenticated attacker may send special H323 packets to exploit the vulnerability. Successful exploit could allow the attacker to send malicious packe... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171206-01-h323-en • CWE-20: Improper Input Validation •
CVSS: 4.3EPSS: 0%CPEs: 19EXPL: 0CVE-2017-17182
https://notcve.org/view.php?id=CVE-2017-17182
15 Feb 2018 — Huawei DP300 V500R002C00, RP200 V500R002C00, V600R006C00, TE30 V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C10, V500R002C00, V600R006C00 have a out-of-bounds read vulnerability. Due to insufficient input validation, an authenticated, remote attacker could send malformed SOAP packets to the target device. Successful exploit could make the device access invalid memory and might reset a process. Huawei DP300 V500R002C00, RP200 V600R006C00, T... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180207-01-soap-en • CWE-125: Out-of-bounds Read •
CVSS: 4.3EPSS: 0%CPEs: 19EXPL: 0CVE-2017-17183
https://notcve.org/view.php?id=CVE-2017-17183
15 Feb 2018 — Huawei DP300 V500R002C00, RP200 V500R002C00, V600R006C00, TE30 V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C10, V500R002C00, V600R006C00 have an integer overflow vulnerability. Due to insufficient input validation, an authenticated, remote attacker could send malformed SOAP packets to the target device. Successful exploit could cause an integer overflow and might reset a process. Huawei DP300 V500R002C00, RP200 V500R002C00, V600R006C00, T... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180207-01-soap-en • CWE-190: Integer Overflow or Wraparound •