VYPR

NGFW Module

by Huawei

CVEs (31)

  • CVE-2021-37129Oct 27, 2021
    risk 0.00cvss epss 0.01

    There is an out of bounds write vulnerability in some Huawei products. The vulnerability is caused by a function of a module that does not properly verify input parameter. Successful exploit could cause out of bounds write leading to a denial of service condition.Affected…

  • CVE-2021-22341Jun 29, 2021
    risk 0.00cvss epss 0.01

    There is a memory leak vulnerability in Huawei products. A resource management weakness exists in a module. Attackers with high privilege can exploit this vulnerability by performing some operations. This can lead to memory leak. Affected product versions include:IPS Module…

  • CVE-2021-22342Jun 22, 2021
    risk 0.00cvss epss 0.01

    There is an information leak vulnerability in Huawei products. A module does not deal with specific input sufficiently. High privilege attackers can exploit this vulnerability by performing some operations. This can lead to information leak. Affected product versions include:…

  • CVE-2021-22411May 27, 2021
    risk 0.00cvss epss 0.01

    There is an out-of-bounds write vulnerability in some Huawei products. The code of a module have a bad judgment logic. Attackers can exploit this vulnerability by performing multiple abnormal activities to trigger the bad logic and cause out-of-bounds write. This may compromise…

  • CVE-2021-22312Apr 8, 2021
    risk 0.00cvss epss 0.01

    There is a memory leak vulnerability in some Huawei products. An authenticated remote attacker may exploit this vulnerability by sending specific message to the affected product. Due to not release the allocated memory properly, successful exploit may cause some service…

  • CVE-2021-22320Mar 22, 2021
    risk 0.00cvss epss 0.01

    There is a denial of service vulnerability in Huawei products. A module cannot deal with specific messages correctly. Attackers can exploit this vulnerability by sending malicious messages to an affected module. This can lead to denial of service. Affected product include some…

  • CVE-2020-9213Mar 22, 2021
    risk 0.00cvss epss 0.01

    There is a denial of service vulnerability in some huawei products. In specific scenarios, due to the improper handling of the packets, an attacker may craft many specific packets. Successful exploit may cause some services to be abnormal. Affected products include some versions…

  • CVE-2020-9101Jul 17, 2020
    risk 0.00cvss epss 0.00

    There is an out-of-bounds write vulnerability in some products. An unauthenticated attacker crafts malformed packets with specific parameter and sends the packets to the affected products. Due to insufficient validation of packets, which may be exploited to cause the process…

  • CVE-2020-9099Jun 8, 2020
    risk 0.00cvss epss 0.01

    Huawei products IPS Module; NGFW Module; NIP6300; NIP6600; NIP6800; Secospace USG6300; Secospace USG6500; Secospace USG6600; USG9500 with versions of V500R001C00; V500R001C20; V500R001C30; V500R001C50; V500R001C60; V500R001C80; V500R005C00; V500R005C10; V500R005C20; V500R002C00;…

  • CVE-2019-5255Dec 13, 2019
    risk 0.00cvss epss 0.00

    Certain Huawei products (AP2000;IPS Module;NGFW Module;NIP6300;NIP6600;NIP6800;S5700;SVN5600;SVN5800;SVN5800-C;SeMG9811;Secospace AntiDDoS8000;Secospace USG6300;Secospace USG6500;Secospace USG6600;USG6000V;eSpace U1981) have a DoS vulnerability. An attacker may send crafted…

  • CVE-2019-5257Dec 13, 2019
    risk 0.00cvss epss 0.00

    Certain Huawei products (AP2000;IPS Module;NGFW Module;NIP6300;NIP6600;NIP6800;S5700;SVN5600;SVN5800;SVN5800-C;SeMG9811;Secospace) have a resource management vulnerability. An attacker who logs in to the board may send crafted messages from the internal network.

Page 2 of 2