3 results (0.001 seconds)

CVSS: 4.9EPSS: 0%CPEs: 29EXPL: 0

Huawei AR routers with software before V200R007C00SPC100; Quidway S9300 routers with software before V200R009C00; S12700 routers with software before V200R008C00SPC500; S9300, Quidway S5300, and S5300 routers with software before V200R007C00; and S5700 routers with software before V200R007C00SPC500 makes it easier for remote authenticated administrators to obtain encryption keys and ciphertext passwords via vectors related to key storage. Routers Huawei AR con software en versiones anteriores a V200R007C00SPC100; routers Quidway S9300 con software en versiones anteriores a V200R009C00; routers S12700 con software en versiones anteriores a V200R008C00SPC500; routers S9300, Quidway S5300 y S5300 con software en versiones anteriores a V200R007C00 y routers S5700 con software en versiones anteriores a V200R007C00SPC500 facilita a administradores remotos autenticados obtener las claves de cifrado y contraseñas de texto cifrado a través de vectores relacionados con el almacenamiento de claves. • http://www.huawei.com/en/psirt/security-advisories/hw-455876 http://www.securityfocus.com/bid/76897 • CWE-326: Inadequate Encryption Strength •

CVSS: 4.9EPSS: 0%CPEs: 29EXPL: 0

Huawei AR routers with software before V200R007C00SPC100; Quidway S9300 routers with software before V200R009C00; S12700 routers with software before V200R008C00SPC500; S9300, Quidway S5300, and S5300 routers with software before V200R007C00; and S5700 routers with software before V200R007C00SPC500 make it easier for remote authenticated administrators to obtain and decrypt passwords by leveraging selection of a reversible encryption algorithm. Routers Huawei AR con software en versiones anteriores a V200R007C00SPC100; routers Quidway S9300 con software en versiones anteriores a V200R009C00; routers S12700 con software en versiones anteriores aV200R008C00SPC500; routers S9300, Quidway S5300 y S5300 con software en versiones anteriores aV200R007C00 y routers S5700 con software en versiones anteriores aV200R007C00SPC500 facilita a administradores remotos autenticados obtener y descifrar contraseñas aprovechando la selección de un algoritmos de cifrado reversible. • http://www.huawei.com/en/psirt/security-advisories/hw-455876 http://www.securityfocus.com/bid/76897 • CWE-326: Inadequate Encryption Strength •

CVSS: 4.0EPSS: 0%CPEs: 10EXPL: 0

Directory traversal vulnerability in the SFTP server in Huawei AR 120, 150, 160, 200, 500, 1200, 2200, 3200, and 3600 routers with software before V200R006SPH003 allows remote authenticated users to access arbitrary directories via unspecified vectors. Vulnerabilidad de salto de directorio en el servidor SFTP en routers Huawei AR 120, 150, 160, 200, 500, 1200, 2200, 3200 y 3600 con software anterior a V200R006SPH003 permite a usuarios remotos autenticados acceder a directorios arbitrarios a través de vectores no especificados. • http://www1.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-461676.htm • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •