cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2019-19415,https://securityvulnerability.io/vulnerability/CVE-2019-19415,,"The SIP module of some Huawei products have a denial of service (DoS) vulnerability. A remote attacker could exploit these three vulnerabilities by sending the specially crafted messages to the affected device. Due to the insufficient verification of the packets, successful exploit could allow the attacker to cause buffer overflow and dead loop, leading to DoS condition. Affected products can be found in https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-sip-en.",Huawei,"Ar120-s,Ar1200,Ar1200-s,Ar150,Ar150-s,Ar160,Ar200,Ar200-s,Ar2200,Ar2200-s,Ar3200,Ar3600,Ar510,Dp300,Ips Module,Ngfw Module,Nip6300,Nip6600,Nip6800,Netengine16ex,Rse6500,Smc2.0,Srg1300,Srg2300,Srg3300,Svn5600,Svn5800,Svn5800-c,Semg9811,Secospace Usg6300,Secospace Usg6500,Secospace Usg6600,Softco,Te30,Te40,Te50,Te60,Tp3206,Usg9500,Usg9520,Usg9560,Vp9660,VieWPoint 8660,VieWPoint 9030,Espace U1910,Espace U1911,Espace U1930,Espace U1960,Espace U1980,Espace U1981",7.5,HIGH,0.0017900000093504786,false,,false,false,false,,,false,false,,2020-07-08T16:58:31.000Z,0
CVE-2019-19416,https://securityvulnerability.io/vulnerability/CVE-2019-19416,,"The SIP module of some Huawei products have a denial of service (DoS) vulnerability. A remote attacker could exploit these three vulnerabilities by sending the specially crafted messages to the affected device. Due to the insufficient verification of the packets, successful exploit could allow the attacker to cause buffer overflow and dead loop, leading to DoS condition. Affected products can be found in https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-sip-en.",Huawei,"Ar120-s,Ar1200,Ar1200-s,Ar150,Ar150-s,Ar160,Ar200,Ar200-s,Ar2200,Ar2200-s,Ar3200,Ar3600,Ar510,Dp300,Ips Module,Ngfw Module,Nip6300,Nip6600,Nip6800,Netengine16ex,Rse6500,Smc2.0,Srg1300,Srg2300,Srg3300,Svn5600,Svn5800,Svn5800-c,Semg9811,Secospace Usg6300,Secospace Usg6500,Secospace Usg6600,Softco,Te30,Te40,Te50,Te60,Tp3206,Usg9500,Usg9520,Usg9560,Vp9660,VieWPoint 8660,VieWPoint 9030,Espace U1910,Espace U1911,Espace U1930,Espace U1960,Espace U1980,Espace U1981",7.5,HIGH,0.0017900000093504786,false,,false,false,false,,,false,false,,2020-07-08T16:55:48.000Z,0
CVE-2019-19417,https://securityvulnerability.io/vulnerability/CVE-2019-19417,,"The SIP module of some Huawei products have a denial of service (DoS) vulnerability. A remote attacker could exploit these three vulnerabilities by sending the specially crafted messages to the affected device. Due to the insufficient verification of the packets, successful exploit could allow the attacker to cause buffer overflow and dead loop, leading to DoS condition. Affected products can be found in https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-sip-en.",Huawei,"Ar120-s,Ar1200,Ar1200-s,Ar150,Ar150-s,Ar160,Ar200,Ar200-s,Ar2200,Ar2200-s,Ar3200,Ar3600,Ar510,Dp300,Ips Module,Ngfw Module,Nip6300,Nip6600,Nip6800,Netengine16ex,Rse6500,Smc2.0,Srg1300,Srg2300,Srg3300,Svn5600,Svn5800,Svn5800-c,Semg9811,Secospace Usg6300,Secospace Usg6500,Secospace Usg6600,Softco,Te30,Te40,Te50,Te60,Tp3206,Usg9500,Usg9520,Usg9560,Vp9660,VieWPoint 8660,VieWPoint 9030,Espace U1910,Espace U1911,Espace U1930,Espace U1960,Espace U1980,Espace U1981",7.5,HIGH,0.0017900000093504786,false,,false,false,false,,,false,false,,2020-07-08T16:53:05.000Z,0
CVE-2020-9071,https://securityvulnerability.io/vulnerability/CVE-2020-9071,,"There is a few bytes out-of-bounds read vulnerability in some Huawei products. The software reads data past the end of the intended buffer when parsing certain message, an authenticated attacker could exploit this vulnerability by sending crafted messages to the device. Successful exploit may cause service abnormal in specific scenario.Affected product versions include:AR120-S versions V200R007C00SPC900,V200R007C00SPCa00",Huawei,Ar120-s;ar1200;ar1200-s;ar150;ar150-s;ar160;ar200;ar200-s;ar2200;ar2200-s;ar3200;ar3600;ar510;netengine16ex;srg1300;srg2300;srg3300,6.5,MEDIUM,0.0008099999977275729,false,,false,false,false,,,false,false,,2020-06-01T14:02:46.000Z,0
CVE-2019-5304,https://securityvulnerability.io/vulnerability/CVE-2019-5304,,"Some Huawei products have a buffer error vulnerability. An unauthenticated, remote attacker could send specific MPLS Echo Request messages to the target products. Due to insufficient input validation of some parameters in the messages, successful exploit may cause the device to reset.",Huawei,Ar120-s;ar1200;ar1200-s;ar150;ar150-s;ar160;ar200;ar200-s;ar2200;ar2200-s;ar3200;ar3600;ips Module;ngfw Module;nip6300;nip6600;netengine16ex;s5700;s6700;srg1300;srg2300;srg3300;secospace Antiddos8000;secospace Usg6300;secospace Usg6500;secospace Usg6600,7.5,HIGH,0.0017900000093504786,false,,false,false,false,,,false,false,,2020-01-03T14:33:41.000Z,0
CVE-2019-5259,https://securityvulnerability.io/vulnerability/CVE-2019-5259,,There is an information leakage vulnerability on some Huawei products(AR120-S;AR1200;AR1200-S;AR150;AR150-S;AR160;AR200;AR200-S;AR2200;AR2200-S;AR3200;AR3600). An attacker with low permissions can view some high-privilege information by running specific commands.Successful exploit could cause an information disclosure condition.,Huawei,Ar120-s;ar1200;ar1200-s;ar150;ar150-s;ar160;ar200;ar200-s;ar2200;ar2200-s;ar3200;ar3600,6.5,MEDIUM,0.0006500000017695129,false,,false,false,false,,,false,false,,2019-12-16T21:43:48.000Z,0
CVE-2019-5291,https://securityvulnerability.io/vulnerability/CVE-2019-5291,,"Some Huawei products have an insufficient verification of data authenticity vulnerability. A remote, unauthenticated attacker has to intercept specific packets between two devices, modify the packets, and send the modified packets to the peer device. Due to insufficient verification of some fields in the packets, an attacker may exploit the vulnerability to cause the target device to be abnormal.",Huawei,Ar120-s;ar1200;ar1200-s;ar150;ar150-s;ar160;ar200;ar200-s;ar2200;ar2200-s;ar3200;ar3600;cloudengine 12800;netengine16ex;s6700;srg1300;srg2300;srg3300,5.9,MEDIUM,0.0017900000093504786,false,,false,false,false,,,false,false,,2019-12-13T14:35:50.000Z,0
CVE-2019-5293,https://securityvulnerability.io/vulnerability/CVE-2019-5293,,Some Huawei products have a memory leak vulnerability when handling some messages. A remote attacker with operation privilege could exploit the vulnerability by sending specific messages continuously. Successful exploit may cause some service to be abnormal.,Huawei,"Ar120-s, Ar1200, Ar1200-s, Ar150, Ar150-s, Ar160, Ar200, Ar200-s, Ar2200, Ar2200-s, Ar3200, Ar3600, Netengine16ex, Srg1300, Srg2300, Srg3300",6.5,MEDIUM,0.001230000052601099,false,,false,false,false,,,false,false,,2019-11-13T16:19:36.000Z,0
CVE-2019-5294,https://securityvulnerability.io/vulnerability/CVE-2019-5294,,"There is an out of bound read vulnerability in some Huawei products. A remote, unauthenticated attacker may send a corrupt or crafted message to the affected products. Due to a buffer read overflow error when parsing the message, successful exploit may cause some service to be abnormal.",Huawei,"Ar120-s,ar1200,ar1200-s,ar150,ar150-s,ar160,ar200,ar200-s,ar2200,ar2200-s,ar3200,ar3600,netengine16ex,srg1300,srg2300,srg3300",7.5,HIGH,0.0017900000093504786,false,,false,false,false,,,false,false,,2019-11-13T16:12:44.000Z,0
CVE-2017-17254,https://securityvulnerability.io/vulnerability/CVE-2017-17254,,"Huawei AR120-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR1200 V200R006C10, V200R006C13, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR1200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR150 V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR150-S V200R006C10SPC300, V200R007C00, V200R008C20, V200R008C30, AR160 V200R006C10, V200R006C12, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR200 V200R006C10, V200R007C00, V200R007C01, V200R008C20, V200R008C30, AR200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR2200 V200R006C10, V200R006C13, V200R006C16PWE, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR2200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR3200 V200R006C10, V200R006C11, V200R007C00, V200R007C01, V200R007C02, V200R008C00, V200R008C10, V200R008C20, V200R008C30, AR3600 V200R006C10, V200R007C00, V200R007C01, V200R008C20, AR510 V200R006C10, V200R006C12, V200R006C13, V200R006C15, V200R006C16, V200R006C17, V200R007C00SPC180T, V200R008C20, V200R008C30, DP300 V500R002C00, IPS Module V100R001C10SPC200, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, NGFW Module V100R001C10SPC200, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R002C00, V500R002C10, NIP6300 V500R001C00, V500R001C20, V500R001C30, V500R001C50, NIP6600 V500R001C00, V500R001C20, V500R001C30, V500R001C50, NIP6800 V500R001C50, NetEngine16EX V200R006C10, V200R007C00, V200R008C20, V200R008C30, RSE6500 V500R002C00, SRG1300 V200R006C10, V200R007C00, V200R007C02, V200R008C20, V200R008C30, SRG2300 V200R006C10, V200R007C00, V200R007C02, V200R008C20, V200R008C30, SRG3300 V200R006C10, V200R007C00, V200R008C20, V200R008C30, SVN5600 V200R003C00, V200R003C10, SVN5800 V200R003C00, V200R003C10, SVN5800-C V200R003C00, V200R003C10, SeMG9811 V300R001C01, Secospace USG6300 V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, Secospace USG6500 V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, Secospace USG6600 V100R001C00SPC200, V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, V500R001C60, TE30 V100R001C02, V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C01, V100R001C10, V500R002C00, V600R006C00, TP3106 V100R002C00, TP3206 V100R002C00, V100R002C10, USG6000V V500R001C20, USG9500 V500R001C00, V500R001C20, V500R001C30, V500R001C50, USG9520 V300R001C01, V300R001C20, USG9560 V300R001C01, V300R001C20, USG9580 V300R001C01, V300R001C20, VP9660 V500R002C00, V500R002C10, ViewPoint 8660 V100R008C03, ViewPoint 9030 V100R011C02 have a null pointer dereference vulnerability in H323 protocol. An unauthenticated, remote attacker could craft malformed packets and send the packets to the affected products. Due to insufficient validation of packets, which could be exploited to cause process crash.",Huawei,Ar120-s Firmware,7.5,HIGH,0.001930000027641654,false,,false,false,false,,,false,false,,2018-04-24T15:00:00.000Z,0