CVSS: 5.3EPSS: 0%CPEs: 138EXPL: 0CVE-2014-8570
https://notcve.org/view.php?id=CVE-2014-8570
Huawei S9300, S9303, S9306, S9312 with software V100R002; S7700, S7703, S7706, S7712 with software V100R003, V100R006, V200R001, V200R002, V200R003, V200R005; S9300E, S9303E, S9306E, S9312E with software V200R001; S9700, S9703, S9706, S9712 with software V200R002, V200R003, V200R005; S12708, S12712 with software V200R005; 5700HI, 5300HI with software V100R006, V200R001, V200R002, V200R003, V200R005; 5710EI, 5310EI with software V200R002, V200R003, V200R005; 5710HI, 5310HI with software V200R003, V200R005; 6700EI, 6300EI with software V200R005 could cause a leak of IP addresses of devices, related to unintended interface support for VRP MPLS LSP Ping. Huawei S9300, S9303, S9306, S9312 con el software V100R002; S7700, S7703, S7706, S7712 con el software V100R003, V100R006, V200R001, V200R002, V200R003, V200R005; S9300E, S9303E, S9306E, S9312E con el software V200R001; S9700, S9703, S9706, S9712 con el software V200R002, V200R003, V200R005; S12708, S12712 con el software V200R005; 5700HI, 5300HI con el software V100R006, V200R001, V200R002, V200R003, V200R005; 5710EI, 5310EI con software V200R002, V200R003, V200R005; 5710HI, 5310HI con software V200R003, V200R005; 6700EI, 6300EI con el software V200R005 podría causar una fuga de direcciones IP de los dispositivos, relacionados con el soporte de interfaz no deseada para VRP MPLS LSP Ping. • http://www.huawei.com/en/psirt/security-advisories/hw-372145 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.5EPSS: 0%CPEs: 33EXPL: 0CVE-2016-8797
https://notcve.org/view.php?id=CVE-2016-8797
Huawei AR3200 with software V200R007C00, V200R005C32, V200R005C20; S12700 with software V200R008C00, V200R007C00; S5300 with software V200R008C00, V200R007C00, V200R006C00; S5700 with software V200R008C00, V200R007C00, V200R006C00; S6300 with software V200R008C00, V200R007C00; S6700 with software V200R008C00, V200R007C00; S7700 with software V200R008C00, V200R007C00, V200R006C00; S9300 with software V200R008C00, V200R007C00, V200R006C00; and S9700 with software V200R008C00, V200R007C00, V200R006C00 allow remote attackers to send abnormal Multiprotocol Label Switching (MPLS) packets to cause memory exhaustion. Huawei AR3200 con software V200R007C00, V200R005C32, V200R005C20; S12700 con software V200R008C00, V200R007C00; S5300 con software V200R008C00, V200R007C00, V200R006C00; S5700 con software V200R008C00, V200R007C00, V200R006C00; S6300 con software V200R008C00, V200R007C00; S6700 con software V200R008C00, V200R007C00; S7700 con software V200R008C00, V200R007C00, V200R006C00; S9300 con software V200R008C00, V200R007C00, V200R006C00; y S9700 con software V200R008C00, V200R007C00, V200R006C00 permiten a atacantes remotos enviar paquetes Multiprotocol Label Switching (MPLS) anormales para provocar un agotamiento de la memoria. • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160608-01-mpls-en • CWE-399: Resource Management Errors •
CVSS: 7.8EPSS: 0%CPEs: 14EXPL: 0CVE-2014-3224
https://notcve.org/view.php?id=CVE-2014-3224
Huawei Quidway S9700 V200R003C00SPC500, Quidway S9300 V200R003C00SPC500, Quidway S7700 V200R003C00SPC500, Quidway S6700 V200R003C00SPC300, Quidway S6300 V200R003C00SPC300, Quidway S5700 V200R003C00SPC300, Quidway S5300 V200R003C00SPC300 enable attackers to launch DoS attacks by crafting and sending malformed packets to these vulnerable products. Huawei Quidway S9700 V200R003C00SPC500, Quidway S9300 V200R003C00SPC500, Quidway S7700 V200R003C00SPC500, Quidway S6700 V200R003C00SPC300, Quidway S6300 V200R003C00SPC300, Quidway S5700 V200R003C00SPC300, Quidway S5300 V200R003C00SPC300 habilita a los atacantes a lanzar ataques de DoS elaborando y enviado paquetes mal formados a estos productos vulnerables. • http://www.huawei.com/en/psirt/security-advisories/hw-333184 • CWE-399: Resource Management Errors •
CVSS: 8.8EPSS: 0%CPEs: 12EXPL: 0CVE-2014-4707
https://notcve.org/view.php?id=CVE-2014-4707
Huawei Campus S7700 with software V200R001C00SPC300, V200R002C00SPC100, V200R003C00SPC300; S9300 with software V200R001C00SPC300, V200R002C00SPC100, V200R003C00SPC300; S9700 with software V200R001C00SPC300, V200R002C00SPC100, V200R003C00SPC300 allow unauthorized users to upgrade the bootrom or bootload software, bypass a Menu protection mechanism, conduct a Menu compromise attack, or bypass a Menu/upgrade protection mechanism. Huawei Campus S7700 con software V200R001C00SPC300, V200R002C00SPC100, V200R003C00SPC300; S9300 con software V200R001C00SPC300, V200R002C00SPC100, V200R003C00SPC300; S9700 con software V200R001C00SPC300, V200R002C00SPC100, V200R003C00SPC300 permiten a usuarios no autorizados a actualizar el software bootrom o bootload, eludiendo el mecanismo de protección Menu, para llevar a cabo un ataque de compromiso de Menu, o eludir un mecanismo de protección Menu/upgrade. • http://www.huawei.com/en/psirt/security-advisories/hw-334629 • CWE-284: Improper Access Control •
CVSS: 7.5EPSS: 0%CPEs: 58EXPL: 0CVE-2016-6518
https://notcve.org/view.php?id=CVE-2016-6518
Memory leak in Huawei S9300, S5300, S5700, S6700, S7700, S9700, and S12700 devices allows remote attackers to cause a denial of service (memory consumption and restart) via a large number of malformed packets. Fuga de memoria en dispositivos Huawei S9300, S5300, S5700, S6700, S7700, S9700 y S12700 permite a atacantes remotos provocar una denegación de servicio (consumo de memoria y reinicio) a través de un gran número de paquetes malformados. • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160914-01-sep-en http://www.securityfocus.com/bid/92968 • CWE-399: Resource Management Errors •