VYPR

Secospace Usg6300 Firmware

by Huawei

CVEs (26)

  • CVE-2020-9127Nov 13, 2020
    risk 0.00cvss epss 0.00

    Some Huawei products have a command injection vulnerability. Due to insufficient input validation, an attacker with high privilege may inject some malicious codes in some files of the affected products. Successful exploit may cause command injection.Affected product versions…

  • CVE-2020-9101Jul 17, 2020
    risk 0.00cvss epss 0.00

    There is an out-of-bounds write vulnerability in some products. An unauthenticated attacker crafts malformed packets with specific parameter and sends the packets to the affected products. Due to insufficient validation of packets, which may be exploited to cause the process…

  • CVE-2019-19415Jul 8, 2020
    risk 0.00cvss epss 0.01

    The SIP module of some Huawei products have a denial of service (DoS) vulnerability. A remote attacker could exploit these three vulnerabilities by sending the specially crafted messages to the affected device. Due to the insufficient verification of the packets, successful…

  • CVE-2019-19416Jul 8, 2020
    risk 0.00cvss epss 0.01

    The SIP module of some Huawei products have a denial of service (DoS) vulnerability. A remote attacker could exploit these three vulnerabilities by sending the specially crafted messages to the affected device. Due to the insufficient verification of the packets, successful…

  • CVE-2019-19417Jul 8, 2020
    risk 0.00cvss epss 0.01

    The SIP module of some Huawei products have a denial of service (DoS) vulnerability. A remote attacker could exploit these three vulnerabilities by sending the specially crafted messages to the affected device. Due to the insufficient verification of the packets, successful…

  • CVE-2020-9075Jun 15, 2020
    risk 0.00cvss epss 0.01

    Huawei products Secospace USG6300;USG6300E with versions of V500R001C30,V500R001C50,V500R001C60,V500R001C80,V500R005C00,V500R005C10;V600R006C00 have a vulnerability of insufficient input verification. An attacker with limited privilege can exploit this vulnerability to access a…

Page 2 of 2