USG9500

CVEs (14)

CVE	Vendor / Product	Sev	Risk	CVSS	Published	Description
CVE-2014-9137	Huawei Fusionmanager	Hig	0.57	8.8	Apr 2, 2017	Huawei USG9500 with software V200R001C01SPC800 and earlier versions, V300R001C00; USG2100 with software V300R001C00SPC900 and earlier versions; USG2200 with software V300R001C00SPC900; USG5100 with software V300R001C00SPC900 could allow an unauthenticated, remote attacker to…
CVE-2017-8167	Huawei Usg9500 Firmware	Hig	0.49	7.5	Nov 22, 2017	Huawei firewall products USG9500 V500R001C50 has a DoS vulnerability.A remote attacker who controls the peer device could exploit the vulnerability by sending malformed IKE packets to the target device. Successful exploit of the vulnerability could cause the device to restart.
CVE-2020-9101	Huawei Secospace Usg6300 Firmware		0.00	—	Jul 17, 2020	There is an out-of-bounds write vulnerability in some products. An unauthenticated attacker crafts malformed packets with specific parameter and sends the packets to the affected products. Due to insufficient validation of packets, which may be exploited to cause the process…
CVE-2019-19415	Huawei Te30		0.00	—	Jul 8, 2020	The SIP module of some Huawei products have a denial of service (DoS) vulnerability. A remote attacker could exploit these three vulnerabilities by sending the specially crafted messages to the affected device. Due to the insufficient verification of the packets, successful…
CVE-2019-19416	Huawei Te30		0.00	—	Jul 8, 2020	The SIP module of some Huawei products have a denial of service (DoS) vulnerability. A remote attacker could exploit these three vulnerabilities by sending the specially crafted messages to the affected device. Due to the insufficient verification of the packets, successful…
CVE-2019-19417	Huawei Te30		0.00	—	Jul 8, 2020	The SIP module of some Huawei products have a denial of service (DoS) vulnerability. A remote attacker could exploit these three vulnerabilities by sending the specially crafted messages to the affected device. Due to the insufficient verification of the packets, successful…
CVE-2020-1829	Huawei Secospace Usg6600 Firmware		0.00	—	Feb 17, 2020	Huawei NIP6800 versions V500R001C30 and V500R001C60SPC500; and Secospace USG6600 and USG9500 versions V500R001C30SPC200, V500R001C30SPC600, and V500R001C60SPC500 have a vulnerability that the IPSec module handles a message improperly. Attackers can send specific message to cause…
CVE-2020-1857	Huawei Secospace Usg6600 Firmware		0.00	—	Feb 17, 2020	Huawei NIP6800 versions V500R001C30, V500R001C60SPC500, and V500R005C00SPC100; and Secospace USG6600 and USG9500 versions V500R001C30SPC200, V500R001C30SPC600, V500R001C60SPC500, and V500R005C00SPC100 have an information leakage vulnerability. Due to improper processing of some…
CVE-2020-1828	Huawei Secospace Usg6600 Firmware		0.00	—	Feb 17, 2020	Huawei NIP6800 versions V500R001C30, V500R001C60SPC500, and V500R005C00; and Secospace USG6600 and USG9500 versions V500R001C30SPC200, V500R001C30SPC600, V500R001C60SPC500, and V500R005C00 have an input validation vulnerability where the IPSec module does not validate a field in…
CVE-2020-1858	Huawei Secospace Usg6600 Firmware		0.00	—	Feb 17, 2020	Huawei products NIP6800 versions V500R001C30, V500R001C60SPC500, and V500R005C00SPC100; Secospace USG6600 versions V500R001C30SPC600, V500R001C60SPC500, and V500R005C00SPC100; and USG9500 versions V500R001C30SPC600, V500R001C60SPC500, and V500R005C00SPC100 have a denial of…
CVE-2019-5273	Huawei USG9500		0.00	—	Dec 26, 2019	USG9500 with versions of V500R001C30;V500R001C60 have a denial of service vulnerability. Due to a flaw in the X.509 implementation in the affected products which can result in a large heap buffer overrun error, an attacker may exploit the vulnerability by a malicious…
CVE-2019-5274	Huawei USG9500		0.00	—	Dec 26, 2019	USG9500 with versions of V500R001C30;V500R001C60 have a denial of service vulnerability. Due to a flaw in the X.509 implementation in the affected products which can result in an infinite loop, an attacker may exploit the vulnerability via a malicious certificate to perform a…
CVE-2019-5275	Huawei USG9500		0.00	—	Dec 26, 2019	USG9500 with versions of V500R001C30;V500R001C60 have a denial of service vulnerability. Due to a flaw in the X.509 implementation in the affected products which can result in a heap buffer overflow when decoding a certificate, an attacker may exploit the vulnerability by a…
CVE-2019-5272	Huawei USG9500		0.00	—	Dec 26, 2019	USG9500 with versions of V500R001C30;V500R001C60 have a missing integrity checking vulnerability. The software of the affected products does not check the integrity which may allow an attacker with high privilege to make malicious modifications without detection.

CVE-2014-9137HigApr 2, 2017
Huawei
Fusionmanager
risk 0.57cvss 8.8epss 0.00
Huawei USG9500 with software V200R001C01SPC800 and earlier versions, V300R001C00; USG2100 with software V300R001C00SPC900 and earlier versions; USG2200 with software V300R001C00SPC900; USG5100 with software V300R001C00SPC900 could allow an unauthenticated, remote attacker to…
CVE-2017-8167HigNov 22, 2017
Huawei
Usg9500 Firmware
risk 0.49cvss 7.5epss 0.00
Huawei firewall products USG9500 V500R001C50 has a DoS vulnerability.A remote attacker who controls the peer device could exploit the vulnerability by sending malformed IKE packets to the target device. Successful exploit of the vulnerability could cause the device to restart.
CVE-2020-9101Jul 17, 2020
Huawei
Secospace Usg6300 Firmware
risk 0.00cvss —epss 0.00
There is an out-of-bounds write vulnerability in some products. An unauthenticated attacker crafts malformed packets with specific parameter and sends the packets to the affected products. Due to insufficient validation of packets, which may be exploited to cause the process…
CVE-2019-19415Jul 8, 2020
Huawei
Te30
risk 0.00cvss —epss 0.00
The SIP module of some Huawei products have a denial of service (DoS) vulnerability. A remote attacker could exploit these three vulnerabilities by sending the specially crafted messages to the affected device. Due to the insufficient verification of the packets, successful…
CVE-2019-19416Jul 8, 2020
Huawei
Te30
risk 0.00cvss —epss 0.00
The SIP module of some Huawei products have a denial of service (DoS) vulnerability. A remote attacker could exploit these three vulnerabilities by sending the specially crafted messages to the affected device. Due to the insufficient verification of the packets, successful…
CVE-2019-19417Jul 8, 2020
Huawei
Te30
risk 0.00cvss —epss 0.00
The SIP module of some Huawei products have a denial of service (DoS) vulnerability. A remote attacker could exploit these three vulnerabilities by sending the specially crafted messages to the affected device. Due to the insufficient verification of the packets, successful…
CVE-2020-1829Feb 17, 2020
Huawei
Secospace Usg6600 Firmware
risk 0.00cvss —epss 0.00
Huawei NIP6800 versions V500R001C30 and V500R001C60SPC500; and Secospace USG6600 and USG9500 versions V500R001C30SPC200, V500R001C30SPC600, and V500R001C60SPC500 have a vulnerability that the IPSec module handles a message improperly. Attackers can send specific message to cause…
CVE-2020-1857Feb 17, 2020
Huawei
Secospace Usg6600 Firmware
risk 0.00cvss —epss 0.00
Huawei NIP6800 versions V500R001C30, V500R001C60SPC500, and V500R005C00SPC100; and Secospace USG6600 and USG9500 versions V500R001C30SPC200, V500R001C30SPC600, V500R001C60SPC500, and V500R005C00SPC100 have an information leakage vulnerability. Due to improper processing of some…
CVE-2020-1828Feb 17, 2020
Huawei
Secospace Usg6600 Firmware
risk 0.00cvss —epss 0.00
Huawei NIP6800 versions V500R001C30, V500R001C60SPC500, and V500R005C00; and Secospace USG6600 and USG9500 versions V500R001C30SPC200, V500R001C30SPC600, V500R001C60SPC500, and V500R005C00 have an input validation vulnerability where the IPSec module does not validate a field in…
CVE-2020-1858Feb 17, 2020
Huawei
Secospace Usg6600 Firmware
risk 0.00cvss —epss 0.00
Huawei products NIP6800 versions V500R001C30, V500R001C60SPC500, and V500R005C00SPC100; Secospace USG6600 versions V500R001C30SPC600, V500R001C60SPC500, and V500R005C00SPC100; and USG9500 versions V500R001C30SPC600, V500R001C60SPC500, and V500R005C00SPC100 have a denial of…
CVE-2019-5273Dec 26, 2019
Huawei
USG9500
risk 0.00cvss —epss 0.00
USG9500 with versions of V500R001C30;V500R001C60 have a denial of service vulnerability. Due to a flaw in the X.509 implementation in the affected products which can result in a large heap buffer overrun error, an attacker may exploit the vulnerability by a malicious…
CVE-2019-5274Dec 26, 2019
Huawei
USG9500
risk 0.00cvss —epss 0.00
USG9500 with versions of V500R001C30;V500R001C60 have a denial of service vulnerability. Due to a flaw in the X.509 implementation in the affected products which can result in an infinite loop, an attacker may exploit the vulnerability via a malicious certificate to perform a…
CVE-2019-5275Dec 26, 2019
Huawei
USG9500
risk 0.00cvss —epss 0.00
USG9500 with versions of V500R001C30;V500R001C60 have a denial of service vulnerability. Due to a flaw in the X.509 implementation in the affected products which can result in a heap buffer overflow when decoding a certificate, an attacker may exploit the vulnerability by a…
CVE-2019-5272Dec 26, 2019
Huawei
USG9500
risk 0.00cvss —epss 0.00
USG9500 with versions of V500R001C30;V500R001C60 have a missing integrity checking vulnerability. The software of the affected products does not check the integrity which may allow an attacker with high privilege to make malicious modifications without detection.