VYPR

eSE620X vESS

by Huawei

CVEs (7)

  • CVE-2021-39999Jul 11, 2022
    risk 0.00cvss epss 0.01

    There is a buffer overflow vulnerability in eSE620X vESS V100R001C10SPC200 and V100R001C20SPC200. An attacker can exploit this vulnerability by sending a specific message to the target device due to insufficient validation of packets. Successful exploit could cause a denial of…

  • CVE-2021-39995Nov 29, 2021
    risk 0.00cvss epss 0.01

    Some Huawei products use the OpenHpi software for hardware management. A function that parses data returned by OpenHpi contains an out-of-bounds read vulnerability that could lead to a denial of service. Affected product versions include: eCNS280_TD V100R005C10; eSE620X vESS…

  • CVE-2021-22396Aug 2, 2021
    risk 0.00cvss epss 0.00

    There is a privilege escalation vulnerability in some Huawei products. Due to improper privilege management, a local attacker with common privilege may access some specific files in the affected products. Successful exploit will cause privilege escalation.Affected product…

  • CVE-2021-22383Jun 22, 2021
    risk 0.00cvss epss 0.01

    There is an out-of-bounds read vulnerability in eCNS280_TD V100R005C10 and eSE620X vESS V100R001C10SPC200, V100R001C20SPC200, V200R001C00SPC300. The vulnerability is due to a message-handling function that contains an out-of-bounds read vulnerability. An attacker can exploit…

  • CVE-2021-22366Jun 22, 2021
    risk 0.00cvss epss 0.00

    There is an out-of-bounds read vulnerability in eSE620X vESS V100R001C10SPC200, V100R001C20SPC200, V200R001C00SPC300. The vulnerability is due to a function that handles an internal message contains an out-of-bounds read vulnerability. An attacker could crafted messages between…

  • CVE-2021-22365Jun 22, 2021
    risk 0.00cvss epss 0.00

    There is an out of bounds read vulnerability in eSE620X vESS V100R001C10SPC200, V100R001C20SPC200, V200R001C00SPC300. A local attacker can exploit this vulnerability by sending specific message to the target device. Due to insufficient validation of internal message, successful…

  • CVE-2021-22361Jun 22, 2021
    risk 0.00cvss epss 0.00

    There is an improper authorization vulnerability in eCNS280 V100R005C00, V100R005C10 and eSE620X vESS V100R001C10SPC200, V100R001C20SPC200. A file access is not authorized correctly. Attacker with low access may launch privilege escalation in a specific scenario. This may…