Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Semg9811_firmware
(Huawei)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 26 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2020-07-08 | CVE-2019-19415 | The SIP module of some Huawei products have a denial of service (DoS) vulnerability. A remote attacker could exploit these three vulnerabilities by sending the specially crafted messages to the affected device. Due to the insufficient verification of the packets, successful exploit could allow the attacker to cause buffer overflow and dead loop, leading to DoS condition. Affected products can be found in https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-sip-en. | Ar1200\-S_firmware, Ar1200_firmware, Ar120\-S_firmware, Ar150\-S_firmware, Ar150_firmware, Ar160_firmware, Ar200\-S_firmware, Ar200_firmware, Ar2200\-S_firmware, Ar2200_firmware, Ar3200_firmware, Ar3600_firmware, Ar510_firmware, Dp300_firmware, Espace_u1910_firmware, Espace_u1911_firmware, Espace_u1930_firmware, Espace_u1960_firmware, Espace_u1980_firmware, Espace_u1981_firmware, Ips_module_firmware, Netengine16ex_firmware, Ngfw_module_firmware, Nip6300_firmware, Nip6600_firmware, Nip6800_firmware, Rse6500_firmware, Secospace_usg6300_firmware, Secospace_usg6500_firmware, Secospace_usg6600_firmware, Semg9811_firmware, Smc2\.0_firmware, Softco_firmware, Srg1300_firmware, Srg2300_firmware, Srg3300_firmware, Svn5600_firmware, Svn5800\-C_firmware, Svn5800_firmware, Te30_firmware, Te40_firmware, Te50_firmware, Te60_firmware, Tp3206_firmware, Usg9500_firmware, Usg9520_firmware, Usg9560_firmware, Viewpoint_8660_firmware, Viewpoint_9030_firmware, Vp9660_firmware | 7.5 | ||
| 2020-07-08 | CVE-2019-19417 | The SIP module of some Huawei products have a denial of service (DoS) vulnerability. A remote attacker could exploit these three vulnerabilities by sending the specially crafted messages to the affected device. Due to the insufficient verification of the packets, successful exploit could allow the attacker to cause buffer overflow and dead loop, leading to DoS condition. Affected products can be found in https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-sip-en. | Ar1200\-S_firmware, Ar1200_firmware, Ar120\-S_firmware, Ar150\-S_firmware, Ar150_firmware, Ar160_firmware, Ar200\-S_firmware, Ar200_firmware, Ar2200\-S_firmware, Ar2200_firmware, Ar3200_firmware, Ar3600_firmware, Ar510_firmware, Dp300_firmware, Espace_u1910_firmware, Espace_u1911_firmware, Espace_u1930_firmware, Espace_u1960_firmware, Espace_u1980_firmware, Espace_u1981_firmware, Ips_module_firmware, Netengine16ex_firmware, Ngfw_module_firmware, Nip6300_firmware, Nip6600_firmware, Nip6800_firmware, Rse6500_firmware, Secospace_usg6300_firmware, Secospace_usg6500_firmware, Secospace_usg6600_firmware, Semg9811_firmware, Smc2\.0_firmware, Softco_firmware, Srg1300_firmware, Srg2300_firmware, Srg3300_firmware, Svn5600_firmware, Svn5800\-C_firmware, Svn5800_firmware, Te30_firmware, Te40_firmware, Te50_firmware, Te60_firmware, Tp3206_firmware, Usg9500_firmware, Usg9520_firmware, Usg9560_firmware, Viewpoint_8660_firmware, Viewpoint_9030_firmware, Vp9660_firmware | 7.5 | ||
| 2020-07-08 | CVE-2019-19416 | The SIP module of some Huawei products have a denial of service (DoS) vulnerability. A remote attacker could exploit these three vulnerabilities by sending the specially crafted messages to the affected device. Due to the insufficient verification of the packets, successful exploit could allow the attacker to cause buffer overflow and dead loop, leading to DoS condition. Affected products can be found in https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-sip-en. | Ar1200\-S_firmware, Ar1200_firmware, Ar120\-S_firmware, Ar150\-S_firmware, Ar150_firmware, Ar160_firmware, Ar200\-S_firmware, Ar200_firmware, Ar2200\-S_firmware, Ar2200_firmware, Ar3200_firmware, Ar3600_firmware, Ar510_firmware, Dp300_firmware, Espace_u1910_firmware, Espace_u1911_firmware, Espace_u1930_firmware, Espace_u1960_firmware, Espace_u1980_firmware, Espace_u1981_firmware, Ips_module_firmware, Netengine16ex_firmware, Ngfw_module_firmware, Nip6300_firmware, Nip6600_firmware, Nip6800_firmware, Rse6500_firmware, Secospace_usg6300_firmware, Secospace_usg6500_firmware, Secospace_usg6600_firmware, Semg9811_firmware, Smc2\.0_firmware, Softco_firmware, Srg1300_firmware, Srg2300_firmware, Srg3300_firmware, Svn5600_firmware, Svn5800\-C_firmware, Svn5800_firmware, Te30_firmware, Te40_firmware, Te50_firmware, Te60_firmware, Tp3206_firmware, Usg9500_firmware, Usg9520_firmware, Usg9560_firmware, Viewpoint_8660_firmware, Viewpoint_9030_firmware, Vp9660_firmware | 7.5 | ||
| 2021-06-22 | CVE-2021-22342 | There is an information leak vulnerability in Huawei products. A module does not deal with specific input sufficiently. High privilege attackers can exploit this vulnerability by performing some operations. This can lead to information leak. Affected product versions include: IPS Module versions V500R005C00, V500R005C10, V500R005C20; NGFW Module versions V500R005C00,V500R005C10, V500R005C20; SeMG9811 versions V500R005C00; USG9500 versions V500R001C00, V500R001C20, V500R001C30, V500R001C50,... | Ips_module_firmware, Ngfw_module_firmware, Semg9811_firmware, Usg9500_firmware | 4.9 | ||
| 2019-12-13 | CVE-2019-5257 | Certain Huawei products (AP2000;IPS Module;NGFW Module;NIP6300;NIP6600;NIP6800;S5700;SVN5600;SVN5800;SVN5800-C;SeMG9811;Secospace) have a resource management vulnerability. An attacker who logs in to the board may send crafted messages from the internal network. | Ap2000_firmware, Espace_u1981_firmware, Ips_firmware, Ngfw_firmware, Nip6300_firmware, Nip6600_firmware, Nip6800_firmware, S5700_firmware, Secospace_antiddos8000_firmware, Secospace_usg6300_firmware, Secospace_usg6500_firmware, Secospace_usg6600_firmware, Semg9811_firmware, Svn5600_firmware, Svn5800\-C_firmware, Svn5800_firmware, Usg6000v_firmware | N/A | ||
| 2019-12-13 | CVE-2019-5258 | Certain Huawei products (AP2000;IPS Module;NGFW Module;NIP6300;NIP6600;NIP6800;S5700;SVN5600;SVN5800;SVN5800-C;SeMG9811;Secospace AntiDDoS8000;Secospace USG6300;Secospace USG6500;Secospace USG6600;USG6000V;eSpace U1981) have a buffer overflow vulnerability. An attacker who logs in to the board may send crafted messages from the internal network port or tamper with inter-process message packets to exploit this vulnerability. Due to insufficient validation of the message, successful exploit... | Ap2000_firmware, Espace_u1981_firmware, Ips_firmware, Ngfw_firmware, Nip6300_firmware, Nip6600_firmware, Nip6800_firmware, S5700_firmware, Secospace_antiddos8000_firmware, Secospace_usg6300_firmware, Secospace_usg6500_firmware, Secospace_usg6600_firmware, Semg9811_firmware, Svn5600_firmware, Svn5800\-C_firmware, Svn5800_firmware, Usg6000v_firmware | N/A | ||
| 2019-12-13 | CVE-2019-5256 | Certain Huawei products (AP2000;IPS Module;NGFW Module;NIP6300;NIP6600;NIP6800;S5700;SVN5600;SVN5800;SVN5800-C;SeMG9811;Secospace AntiDDoS8000;Secospace USG6300;Secospace USG6500;Secospace USG6600;USG6000V;eSpace U1981) have a null pointer dereference vulnerability. The system dereferences a pointer that it expects to be valid, but is NULL. A local attacker could exploit this vulnerability by sending crafted parameters. A successful exploit could cause a denial of service and the process reboot. | Ap2000_firmware, Espace_u1981_firmware, Ips_firmware, Ngfw_firmware, Nip6300_firmware, Nip6600_firmware, Nip6800_firmware, S5700_firmware, Secospace_antiddos8000_firmware, Secospace_usg6300_firmware, Secospace_usg6500_firmware, Secospace_usg6600_firmware, Semg9811_firmware, Svn5600_firmware, Svn5800\-C_firmware, Svn5800_firmware, Usg6000v_firmware | N/A | ||
| 2019-12-13 | CVE-2019-5255 | Certain Huawei products (AP2000;IPS Module;NGFW Module;NIP6300;NIP6600;NIP6800;S5700;SVN5600;SVN5800;SVN5800-C;SeMG9811;Secospace AntiDDoS8000;Secospace USG6300;Secospace USG6500;Secospace USG6600;USG6000V;eSpace U1981) have a DoS vulnerability. An attacker may send crafted messages from a FTP client to exploit this vulnerability. Due to insufficient validation of the message, successful exploit may cause the system out-of-bounds read and result in a denial of service condition of the... | Ap2000_firmware, Espace_u1981_firmware, Ips_firmware, Ngfw_firmware, Nip6300_firmware, Nip6600_firmware, Nip6800_firmware, S5700_firmware, Secospace_antiddos8000_firmware, Secospace_usg6300_firmware, Secospace_usg6500_firmware, Secospace_usg6600_firmware, Semg9811_firmware, Svn5600_firmware, Svn5800\-C_firmware, Svn5800_firmware, Usg6000v_firmware | N/A | ||
| 2019-12-13 | CVE-2019-5254 | Certain Huawei products (AP2000;IPS Module;NGFW Module;NIP6300;NIP6600;NIP6800;S5700;SVN5600;SVN5800;SVN5800-C;SeMG9811;Secospace AntiDDoS8000;Secospace USG6300;Secospace USG6500;Secospace USG6600;USG6000V;eSpace U1981) have an out-of-bounds read vulnerability. An attacker who logs in to the board may send crafted messages from the internal network port or tamper with inter-process message packets to exploit this vulnerability. Due to insufficient validation of the message, successful... | Ap2000_firmware, Espace_u1981_firmware, Ips_firmware, Ngfw_firmware, Nip6300_firmware, Nip6600_firmware, Nip6800_firmware, S5700_firmware, Secospace_antiddos8000_firmware, Secospace_usg6300_firmware, Secospace_usg6500_firmware, Secospace_usg6600_firmware, Semg9811_firmware, Svn5600_firmware, Svn5800\-C_firmware, Svn5800_firmware, Usg6000v_firmware | N/A | ||
| 2018-02-15 | CVE-2017-17296 | Huawei AR120-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR1200 V200R006C10, V200R006C13, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR1200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR150 V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR150-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR160 V200R006C10, V200R006C12, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR200 V200R006C10,... | Ar1200\-S_firmware, Ar1200_firmware, Ar120\-S_firmware, Ar150\-S_firmware, Ar150_firmware, Ar160_firmware, Ar200\-S_firmware, Ar200_firmware, Ar2200\-S_firmware, Ar2200_firmware, Ar3200_firmware, Ar3600_firmware, Ar510_firmware, Dp300_firmware, Espace_u1981_firmware, Ips_module_firmware, Netengine16ex_firmware, Ngfw_module_firmware, Nip6300_firmware, Nip6600_firmware, Nip6800_firmware, Rp200_firmware, Rse6500_firmware, Secospace_usg6300_firmware, Secospace_usg6500_firmware, Secospace_usg6600_firmware, Semg9811_firmware, Srg1300_firmware, Srg2300_firmware, Srg3300_firmware, Svn5600_firmware, Svn5800\-C_firmware, Svn5800_firmware, Te30_firmware, Te40_firmware, Te50_firmware, Tp3106_firmware, Tp3206_firmware, Usg9500_firmware, Usg9520_firmware, Usg9560_firmware, Usg9580_firmware, Viewpoint_9030_firmware | 5.3 |