CVSS: 4.3EPSS: 0%CPEs: 19EXPL: 0CVE-2017-17183
https://notcve.org/view.php?id=CVE-2017-17183
15 Feb 2018 — Huawei DP300 V500R002C00, RP200 V500R002C00, V600R006C00, TE30 V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C10, V500R002C00, V600R006C00 have an integer overflow vulnerability. Due to insufficient input validation, an authenticated, remote attacker could send malformed SOAP packets to the target device. Successful exploit could cause an integer overflow and might reset a process. Huawei DP300 V500R002C00, RP200 V500R002C00, V600R006C00, T... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180207-01-soap-en • CWE-190: Integer Overflow or Wraparound •
CVSS: 4.3EPSS: 0%CPEs: 19EXPL: 0CVE-2017-17184
https://notcve.org/view.php?id=CVE-2017-17184
15 Feb 2018 — Huawei DP300 V500R002C00, RP200 V500R002C00, V600R006C00, TE30 V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C10, V500R002C00, V600R006C00 have an integer overflow vulnerability. Due to insufficient input validation, an authenticated, remote attacker could send malformed SOAP packets to the target device. Successful exploit could cause an integer overflow and might reset a process. Huawei DP300 V500R002C00, RP200 V500R002C00, V600R006C00, T... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180207-01-soap-en • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.5EPSS: 0%CPEs: 5EXPL: 0CVE-2017-17290
https://notcve.org/view.php?id=CVE-2017-17290
15 Feb 2018 — The Light Directory Access Protocol (LDAP) clients of Huawei TE60 with software V600R006C00, ViewPoint 9030 with software V100R011C02, V100R011C03 have a resource management errors vulnerability. An unauthenticated, remote attacker may make the LDAP server not respond to the client's request by controlling the LDAP server. Due to improper management of LDAP connection resource, a successful exploit may cause the connection resource exhausted of the LDAP client. Los clientes Light Directory Access Protocol (... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171213-01-ldap-en • CWE-400: Uncontrolled Resource Consumption •
CVSS: 7.5EPSS: 0%CPEs: 9EXPL: 0CVE-2017-15341
https://notcve.org/view.php?id=CVE-2017-15341
15 Feb 2018 — Huawei AR3200 V200R008C20, V200R008C30, TE40 V600R006C00, TE50 V600R006C00, TE60 V600R006C00 have a denial of service vulnerability. The software decodes X.509 certificate in an improper way. A remote unauthenticated attacker could send a crafted X.509 certificate to the device. Successful exploit could result in a denial of service on the device. Huawei AR3200 V200R008C20, V200R008C30, TE40 V600R006C00, TE50 V600R006C00 y TE60 V600R006C00 tienen una vulnerabilidad de denegación de servicio. • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171129-01-cert-en • CWE-295: Improper Certificate Validation •
CVSS: 5.3EPSS: 0%CPEs: 112EXPL: 0CVE-2017-15335
https://notcve.org/view.php?id=CVE-2017-15335
15 Feb 2018 — The SIP backup feature in Huawei DP300 V500R002C00, IPS Module V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, NGFW Module V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R002C00, V500R002C10, NIP6300 V500R001C00, V500R001C20, V500R001C30, V500R001C50, NIP6600 V500R001C00, V500R001C20, V500R001C30, V500R001C50, NIP6800 V500R001C50, RP200 V500R002C00, V600R006C00, SVN5600 V200R003C00, V200R003C10, SVN5800 V200R003C00, V200R003C10, SVN5800-C V200... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171201-01-sip-en • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 3.3EPSS: 0%CPEs: 138EXPL: 0CVE-2017-17294
https://notcve.org/view.php?id=CVE-2017-17294
15 Feb 2018 — Huawei AR120-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR1200 V200R006C10, V200R006C13, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR1200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR150 V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR150-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR160 V200R006C10, V200R006C12, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR200 V200R006C10, V200R007C00, V200R007C01, ... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171213-06-xml-en • CWE-476: NULL Pointer Dereference •
CVSS: 5.5EPSS: 0%CPEs: 138EXPL: 0CVE-2017-17291
https://notcve.org/view.php?id=CVE-2017-17291
15 Feb 2018 — Huawei AR120-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR1200 V200R006C10, V200R006C13, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR1200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR150 V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR150-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR160 V200R006C10, V200R006C12, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR200 V200R006C10, V200R007C00, V200R007C01, ... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171213-06-xml-en • CWE-772: Missing Release of Resource after Effective Lifetime •
CVSS: 5.3EPSS: 0%CPEs: 20EXPL: 0CVE-2017-17283
https://notcve.org/view.php?id=CVE-2017-17283
15 Feb 2018 — Huawei DP300 V500R002C00, RP200 V500R002C00, V600R006C00, TE30 V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C01, V100R001C10, V500R002C00, V600R006C00 have an out-of-bound read vulnerability. A remote attacker send specially crafted Session Initiation Protocol (SIP) messages to the affected products. Due to insufficient input validation, successful exploit will cause some services abnormal. Huawei DP300 V500R002C00, RP200 V500R002C00, V600... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180207-02-sip-en • CWE-20: Improper Input Validation CWE-125: Out-of-bounds Read •
CVSS: 5.3EPSS: 0%CPEs: 19EXPL: 0CVE-2017-17288
https://notcve.org/view.php?id=CVE-2017-17288
15 Feb 2018 — Huawei DP300 V500R002C00, RP200 V500R002C00, V600R006C00, TE30 V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C10, V500R002C00, V600R006C00 have an integer overflow vulnerability. An unauthenticated, remote attacker may send specially crafted messages to the affected products. Due to insufficient input validation, successful exploit may cause integer overflow and some process abnormal. Huawei DP300 V500R002C00, RP200 V500R002C00, V600R006C00... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180131-01-integer-en • CWE-190: Integer Overflow or Wraparound •
CVSS: 5.3EPSS: 0%CPEs: 21EXPL: 0CVE-2017-15354
https://notcve.org/view.php?id=CVE-2017-15354
15 Feb 2018 — Huawei DP300, V500R002C00, RP200, V600R006C00, TE30, V100R001C10, V500R002C00,V600R006C00, TE40, V500R002C00, V600R006C00, TE50, V500R002C00,V600R006C00, TE60, V100R001C10, V500R002C00, V600R006C00, TX50,V500R002C00, V600R006C00 have a buffer overflow vulnerability. An attacker may send specially crafted HTTP messages to the affected products. Due insufficient input validation of three different parameters in the messages, successful exploit may cause some service abnormal. Huawei DP300, V500R002C00, RP200,... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171108-02-http-en • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •