VYPR

Huawei products

by Huawei

CVEs (5)

  • CVE-2019-5304HigJan 3, 2020
    risk 0.49cvss 7.5epss 0.01

    Some Huawei products have a buffer error vulnerability. An unauthenticated, remote attacker could send specific MPLS Echo Request messages to the target products. Due to insufficient input validation of some parameters in the messages, successful exploit may cause the device to…

  • CVE-2019-19397HigDec 13, 2019
    risk 0.49cvss 7.5epss 0.01

    There is a weak algorithm vulnerability in some Huawei products. The affected products use weak algorithms by default. Attackers may exploit the vulnerability to cause information leaks.

  • CVE-2019-5294HigNov 13, 2019
    risk 0.49cvss 7.5epss 0.01

    There is an out of bound read vulnerability in some Huawei products. A remote, unauthenticated attacker may send a corrupt or crafted message to the affected products. Due to a buffer read overflow error when parsing the message, successful exploit may cause some service to be…

  • CVE-2019-5293MedNov 13, 2019
    risk 0.42cvss 6.5epss 0.01

    Some Huawei products have a memory leak vulnerability when handling some messages. A remote attacker with operation privilege could exploit the vulnerability by sending specific messages continuously. Successful exploit may cause some service to be abnormal.

  • CVE-2019-5291MedDec 13, 2019
    risk 0.38cvss 5.9epss 0.00

    Some Huawei products have an insufficient verification of data authenticity vulnerability. A remote, unauthenticated attacker has to intercept specific packets between two devices, modify the packets, and send the modified packets to the peer device. Due to insufficient…