Note:
This project will be discontinued after December 13, 2021. [more]
Product:
S9700_firmware
(Huawei)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 34 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2017-04-02 | CVE-2016-2404 | Huawei switches S5700, S6700, S7700, S9700 with software V200R001C00SPC300, V200R002C00SPC100, V200R003C00SPC300, V200R005C00SPC500, V200R006C00; S12700 with software V200R005C00SPC500, V200R006C00; ACU2 with software V200R005C00SPC500, V200R006C00 have a permission control vulnerability. If a switch enables Authentication, Authorization, and Accounting (AAA) for permission control and user permissions are not appropriate, AAA users may obtain the virtual type terminal (VTY) access... | Acu2_firmware, S12700_firmware, S5700_firmware, S6700_firmware, S7700_firmware, S9700_firmware | 7.5 | ||
| 2016-04-14 | CVE-2015-8677 | Memory leak in Huawei S5300EI, S5300SI, S5310HI, and S6300EI Campus series switches with software V200R003C00 before V200R003SPH011 and V200R005C00 before V200R005SPH008; S2350EI and S5300LI Campus series switches with software V200R003C00 before V200R003SPH011, V200R005C00 before V200R005SPH008, and V200R006C00 before V200R006SPH002; S9300, S7700, and S9700 Campus series switches with software V200R003C00 before V200R003SPH011, V200R005C00 before V200R005SPH009, and V200R006C00 before... | S2300_firmware, S2350ei_firmware, S3300_firmware, S5300ei_firmware, S5300li_firmware, S5300si_firmware, S5310hi_firmware, S5720ei_firmware, S5720hi_firmware, S6300ei_firmware, S7700_firmware, S9300_firmware, S9700_firmware | 6.5 | ||
| 2016-04-14 | CVE-2015-8676 | Memory leak in Huawei S5300EI, S5300SI, S5310HI, S6300EI/ S2350EI, and S5300LI Campus series switches with software V200R001C00 before V200R001SPH018, V200R002C00 before V200R003SPH011, and V200R003C00 before V200R003SPH011; S9300, S7700, and S9700 Campus series switches with software V200R001C00 before V200R001SPH023, V200R002C00 before V200R003SPH011, and V200R003C00 before V200R003SPH011; and S2300 and S3300 Campus series switches with software V100R006C05 before V100R006SPH022 allows... | S2300_firmware, S2350ei_firmware, S3300_firmware, S5300ei_firmware, S5300li_firmware, S5300si_firmware, S5310hi_firmware, S6300ei_firmware, S7700_firmware, S9300_firmware, S9700_firmware | 7.5 | ||
| 2017-09-25 | CVE-2015-7846 | Huawei S7700, S9700, S9300 before V200R07C00SPC500, and AR200, AR1200, AR2200, AR3200 before V200R005C20SPC200 allows attackers with physical access to the CF card to obtain sensitive information. | Ar1200_firmware, Ar200_firmware, Ar2200_firmware, Ar3200_firmware, S7700_firmware, S9300_firmware, S9700_firmware | 4.6 | ||
| 2017-06-08 | CVE-2015-3913 | The IP stack in multiple Huawei Campus series switch models allows remote attackers to cause a denial of service (reboot) via a crafted ICMP request message. | S12700_firmware, S2300_firmware, S2350ei_firmware, S2700_firmware, S2750ei_firmware, S3300_firmware, S3700_firmware, S5300ei_firmware, S5300hi_firmware, S5300li_firmware, S5300si_firmware, S5700ei_firmware, S5700hi_firmware, S5700li_firmware, S5700si_firmware, S5710hi_firmware, S5720hi_firmware, S6300ei_firmware, S6700ei_firmware, S7700_firmware, S9300_firmware, S9700_firmware | 7.5 | ||
| 2017-06-08 | CVE-2015-2800 | The user authentication module in Huawei Campus switches S5700, S5300, S6300, and S6700 with software before V200R001SPH012 and S7700, S9300, and S9700 with software before V200R001SPH015 allows remote attackers to cause a denial of service (device restart) via vectors involving authentication, which trigger an array access violation. | S5300_firmware, S5700_firmware, S6300_firmware, S6700_firmware, S7700_firmware, S9300_firmware, S9700_firmware | 7.5 | ||
| 2017-04-02 | CVE-2014-8572 | Huawei AC6605 with software V200R001C00; AC6605 with software V200R002C00; ACU with software V200R001C00; ACU with software V200R002C00; S2300, S3300, S2700, S3700 with software V100R006C05 and earlier versions; S5300, S5700, S6300, S6700 with software V100R006, V200R001, V200R002, V200R003, V200R005C00SPC300 and earlier versions; S7700, S9300, S9300E, S9700 with software V100R006, V200R001, V200R002, V200R003, V200R005C00SPC300 and earlier versions could allow remote attackers to send a... | Ac6605_firmware, Acu_firmware, S5300_firmware, S5700_firmware, S6300_firmware, S6700_firmware, S7700_firmware, S9300_firmware, S9300e_firmware, S9700_firmware, S_series_firmware | 7.5 | ||
| 2017-04-02 | CVE-2014-8570 | Huawei S9300, S9303, S9306, S9312 with software V100R002; S7700, S7703, S7706, S7712 with software V100R003, V100R006, V200R001, V200R002, V200R003, V200R005; S9300E, S9303E, S9306E, S9312E with software V200R001; S9700, S9703, S9706, S9712 with software V200R002, V200R003, V200R005; S12708, S12712 with software V200R005; 5700HI, 5300HI with software V100R006, V200R001, V200R002, V200R003, V200R005; 5710EI, 5310EI with software V200R002, V200R003, V200R005; 5710HI, 5310HI with software... | 5300hi_firmware, 5310ei_firmware, 5310hi_firmware, 5700hi_firmware, 5710ei_firmware, 5710hi_firmware, 6300ei_firmware, 6700ei_firmware, S12708_firmware, S12712_firmware, S7700_firmware, S7703_firmware, S7706_firmware, S7712_firmware, S9300_firmware, S9300e_firmware, S9303_firmware, S9303e_firmware, S9306_firmware, S9306e_firmware, S9312_firmware, S9312e_firmware, S9700_firmware, S9703_firmware, S9706_firmware, S9712_firmware | 5.3 | ||
| 2018-01-08 | CVE-2014-5394 | Multiple Huawei Campus switches allow remote attackers to enumerate usernames via vectors involving use of SSH by the maintenance terminal. | S2300_firmware, S2700_firmware, S3300_firmware, S3700_firmware, S5300_firmware, S5700_firmware, S6300_firmware, S6700_firmware, S7700_firmware, S9300_firmware, S9300e_firmware, S9700_firmware | 5.9 | ||
| 2018-01-30 | CVE-2014-4705 | Multiple heap-based buffer overflows in the eSap software platform in Huawei Campus S9300, S7700, S9700, S5300, S5700, S6300, and S6700 series switches; AR150, AR160, AR200, AR1200, AR2200, AR3200, AR530, NetEngine16EX, SRG1300, SRG2300, and SRG3300 series routers; and WLAN AC6005, AC6605, and ACU2 access controllers allow remote attackers to cause a denial of service (device restart) via a crafted length field in a packet. | Ar1200_firmware, Ar150_firmware, Ar160_firmware, Ar200_firmware, Ar2200_firmware, Ar3200_firmware, Ar530_firmware, Netengine16ex_firmware, S5300_firmware, S5700_firmware, S6300_firmware, S6700_firmware, S7700_firmware, S9300_firmware, S9700_firmware, Srg1300_firmware, Srg2300_firmware, Srg3300_firmware, Wlan_ac6005_firmware, Wlan_ac6605_firmware, Wlan_acu2_firmware | 7.5 |