VYPR

eSpace

by Huawei

CVEs (4)

  • CVE-2016-8271MedApr 2, 2017
    risk 0.34cvss 5.3epss 0.01

    Huawei eSpace IAD V300R002C01SPC100 and earlier versions have an information leak vulnerability; an attacker can check and download the fault information by accessing a special URL.

  • CVE-2018-7960Nov 27, 2018
    risk 0.00cvss epss 0.01

    There is a SRTP icon display vulnerability in Huawei eSpace product. An unauthenticated, remote attacker launches man-in-the-middle attack to intercept the packets in non-secure transmission mode. Successful exploitation may intercept and tamper with the call information,…

  • CVE-2018-7959Nov 27, 2018
    risk 0.00cvss epss 0.01

    There is a short key vulnerability in Huawei eSpace product. An unauthenticated, remote attacker launches man-in-the-middle attack to intercept and decrypt the call information when the user enables SRTP to make a call. Successful exploitation may cause sensitive information…

  • CVE-2018-7958Nov 27, 2018
    risk 0.00cvss epss 0.01

    There is an anonymous TLS cipher suites supported vulnerability in Huawei eSpace product. An unauthenticated, remote attacker launches man-in-the-middle attack to hijack the connection from a client when the user signs up to log in by TLS. Due to insufficient authentication,…