cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2019-19415,https://securityvulnerability.io/vulnerability/CVE-2019-19415,,"The SIP module of some Huawei products have a denial of service (DoS) vulnerability. A remote attacker could exploit these three vulnerabilities by sending the specially crafted messages to the affected device. Due to the insufficient verification of the packets, successful exploit could allow the attacker to cause buffer overflow and dead loop, leading to DoS condition. Affected products can be found in https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-sip-en.",Huawei,"Ar120-s,Ar1200,Ar1200-s,Ar150,Ar150-s,Ar160,Ar200,Ar200-s,Ar2200,Ar2200-s,Ar3200,Ar3600,Ar510,Dp300,Ips Module,Ngfw Module,Nip6300,Nip6600,Nip6800,Netengine16ex,Rse6500,Smc2.0,Srg1300,Srg2300,Srg3300,Svn5600,Svn5800,Svn5800-c,Semg9811,Secospace Usg6300,Secospace Usg6500,Secospace Usg6600,Softco,Te30,Te40,Te50,Te60,Tp3206,Usg9500,Usg9520,Usg9560,Vp9660,VieWPoint 8660,VieWPoint 9030,Espace U1910,Espace U1911,Espace U1930,Espace U1960,Espace U1980,Espace U1981",7.5,HIGH,0.0017900000093504786,false,,false,false,false,,,false,false,,2020-07-08T16:58:31.000Z,0
CVE-2019-19416,https://securityvulnerability.io/vulnerability/CVE-2019-19416,,"The SIP module of some Huawei products have a denial of service (DoS) vulnerability. A remote attacker could exploit these three vulnerabilities by sending the specially crafted messages to the affected device. Due to the insufficient verification of the packets, successful exploit could allow the attacker to cause buffer overflow and dead loop, leading to DoS condition. Affected products can be found in https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-sip-en.",Huawei,"Ar120-s,Ar1200,Ar1200-s,Ar150,Ar150-s,Ar160,Ar200,Ar200-s,Ar2200,Ar2200-s,Ar3200,Ar3600,Ar510,Dp300,Ips Module,Ngfw Module,Nip6300,Nip6600,Nip6800,Netengine16ex,Rse6500,Smc2.0,Srg1300,Srg2300,Srg3300,Svn5600,Svn5800,Svn5800-c,Semg9811,Secospace Usg6300,Secospace Usg6500,Secospace Usg6600,Softco,Te30,Te40,Te50,Te60,Tp3206,Usg9500,Usg9520,Usg9560,Vp9660,VieWPoint 8660,VieWPoint 9030,Espace U1910,Espace U1911,Espace U1930,Espace U1960,Espace U1980,Espace U1981",7.5,HIGH,0.0017900000093504786,false,,false,false,false,,,false,false,,2020-07-08T16:55:48.000Z,0
CVE-2019-19417,https://securityvulnerability.io/vulnerability/CVE-2019-19417,,"The SIP module of some Huawei products have a denial of service (DoS) vulnerability. A remote attacker could exploit these three vulnerabilities by sending the specially crafted messages to the affected device. Due to the insufficient verification of the packets, successful exploit could allow the attacker to cause buffer overflow and dead loop, leading to DoS condition. Affected products can be found in https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-sip-en.",Huawei,"Ar120-s,Ar1200,Ar1200-s,Ar150,Ar150-s,Ar160,Ar200,Ar200-s,Ar2200,Ar2200-s,Ar3200,Ar3600,Ar510,Dp300,Ips Module,Ngfw Module,Nip6300,Nip6600,Nip6800,Netengine16ex,Rse6500,Smc2.0,Srg1300,Srg2300,Srg3300,Svn5600,Svn5800,Svn5800-c,Semg9811,Secospace Usg6300,Secospace Usg6500,Secospace Usg6600,Softco,Te30,Te40,Te50,Te60,Tp3206,Usg9500,Usg9520,Usg9560,Vp9660,VieWPoint 8660,VieWPoint 9030,Espace U1910,Espace U1911,Espace U1930,Espace U1960,Espace U1980,Espace U1981",7.5,HIGH,0.0017900000093504786,false,,false,false,false,,,false,false,,2020-07-08T16:53:05.000Z,0
CVE-2020-9071,https://securityvulnerability.io/vulnerability/CVE-2020-9071,,"There is a few bytes out-of-bounds read vulnerability in some Huawei products. The software reads data past the end of the intended buffer when parsing certain message, an authenticated attacker could exploit this vulnerability by sending crafted messages to the device. Successful exploit may cause service abnormal in specific scenario.Affected product versions include:AR120-S versions V200R007C00SPC900,V200R007C00SPCa00",Huawei,Ar120-s;ar1200;ar1200-s;ar150;ar150-s;ar160;ar200;ar200-s;ar2200;ar2200-s;ar3200;ar3600;ar510;netengine16ex;srg1300;srg2300;srg3300,6.5,MEDIUM,0.0008099999977275729,false,,false,false,false,,,false,false,,2020-06-01T14:02:46.000Z,0
CVE-2020-9068,https://securityvulnerability.io/vulnerability/CVE-2020-9068,,"Huawei AR3200 products with versions of V200R007C00SPC900, V200R007C00SPCa00, V200R007C00SPCb00, V200R007C00SPCc00, V200R009C00SPC500 have an improper authentication vulnerability. Attackers need to perform some operations to exploit the vulnerability. Successful exploit may obtain certain permissions on the device.",Huawei,Ar3200,9.8,CRITICAL,0.0030900000128895044,false,,false,false,false,,,false,false,,2020-04-27T15:26:16.000Z,0
CVE-2019-5304,https://securityvulnerability.io/vulnerability/CVE-2019-5304,,"Some Huawei products have a buffer error vulnerability. An unauthenticated, remote attacker could send specific MPLS Echo Request messages to the target products. Due to insufficient input validation of some parameters in the messages, successful exploit may cause the device to reset.",Huawei,Ar120-s;ar1200;ar1200-s;ar150;ar150-s;ar160;ar200;ar200-s;ar2200;ar2200-s;ar3200;ar3600;ips Module;ngfw Module;nip6300;nip6600;netengine16ex;s5700;s6700;srg1300;srg2300;srg3300;secospace Antiddos8000;secospace Usg6300;secospace Usg6500;secospace Usg6600,7.5,HIGH,0.0017900000093504786,false,,false,false,false,,,false,false,,2020-01-03T14:33:41.000Z,0
CVE-2019-5259,https://securityvulnerability.io/vulnerability/CVE-2019-5259,,There is an information leakage vulnerability on some Huawei products(AR120-S;AR1200;AR1200-S;AR150;AR150-S;AR160;AR200;AR200-S;AR2200;AR2200-S;AR3200;AR3600). An attacker with low permissions can view some high-privilege information by running specific commands.Successful exploit could cause an information disclosure condition.,Huawei,Ar120-s;ar1200;ar1200-s;ar150;ar150-s;ar160;ar200;ar200-s;ar2200;ar2200-s;ar3200;ar3600,6.5,MEDIUM,0.0006500000017695129,false,,false,false,false,,,false,false,,2019-12-16T21:43:48.000Z,0
CVE-2019-5291,https://securityvulnerability.io/vulnerability/CVE-2019-5291,,"Some Huawei products have an insufficient verification of data authenticity vulnerability. A remote, unauthenticated attacker has to intercept specific packets between two devices, modify the packets, and send the modified packets to the peer device. Due to insufficient verification of some fields in the packets, an attacker may exploit the vulnerability to cause the target device to be abnormal.",Huawei,Ar120-s;ar1200;ar1200-s;ar150;ar150-s;ar160;ar200;ar200-s;ar2200;ar2200-s;ar3200;ar3600;cloudengine 12800;netengine16ex;s6700;srg1300;srg2300;srg3300,5.9,MEDIUM,0.0017900000093504786,false,,false,false,false,,,false,false,,2019-12-13T14:35:50.000Z,0
CVE-2019-5293,https://securityvulnerability.io/vulnerability/CVE-2019-5293,,Some Huawei products have a memory leak vulnerability when handling some messages. A remote attacker with operation privilege could exploit the vulnerability by sending specific messages continuously. Successful exploit may cause some service to be abnormal.,Huawei,"Ar120-s, Ar1200, Ar1200-s, Ar150, Ar150-s, Ar160, Ar200, Ar200-s, Ar2200, Ar2200-s, Ar3200, Ar3600, Netengine16ex, Srg1300, Srg2300, Srg3300",6.5,MEDIUM,0.001230000052601099,false,,false,false,false,,,false,false,,2019-11-13T16:19:36.000Z,0
CVE-2019-5294,https://securityvulnerability.io/vulnerability/CVE-2019-5294,,"There is an out of bound read vulnerability in some Huawei products. A remote, unauthenticated attacker may send a corrupt or crafted message to the affected products. Due to a buffer read overflow error when parsing the message, successful exploit may cause some service to be abnormal.",Huawei,"Ar120-s,ar1200,ar1200-s,ar150,ar150-s,ar160,ar200,ar200-s,ar2200,ar2200-s,ar3200,ar3600,netengine16ex,srg1300,srg2300,srg3300",7.5,HIGH,0.0017900000093504786,false,,false,false,false,,,false,false,,2019-11-13T16:12:44.000Z,0
CVE-2019-5300,https://securityvulnerability.io/vulnerability/CVE-2019-5300,,"There is a digital signature verification bypass vulnerability in AR1200, AR1200-S, AR150, AR160, AR200, AR2200, AR2200-S, AR3200, SRG1300, SRG2300 and SRG3300 Huawei routers. The vulnerability is due to the affected software improperly verifying digital signatures for the software image in the affected device. A local attacker with high privilege may exploit the vulnerability to bypass integrity checks for software images and install a malicious software image on the affected device.",Huawei,"Ar1200, Ar1200-s, Ar150, Ar160, Ar200, Ar2200, Ar2200-s, Ar3200, Srg1300, Srg2300, Srg3300",6.7,MEDIUM,0.0004199999966658652,false,,false,false,false,,,false,false,,2019-06-04T18:30:58.000Z,0
CVE-2016-8797,https://securityvulnerability.io/vulnerability/CVE-2016-8797,,"Huawei AR3200 with software V200R007C00, V200R005C32, V200R005C20; S12700 with software V200R008C00, V200R007C00; S5300 with software V200R008C00, V200R007C00, V200R006C00; S5700 with software V200R008C00, V200R007C00, V200R006C00; S6300 with software V200R008C00, V200R007C00; S6700 with software V200R008C00, V200R007C00; S7700 with software V200R008C00, V200R007C00, V200R006C00; S9300 with software V200R008C00, V200R007C00, V200R006C00; and S9700 with software V200R008C00, V200R007C00, V200R006C00 allow remote attackers to send abnormal Multiprotocol Label Switching (MPLS) packets to cause memory exhaustion.",Huawei,"Ar3200,s12700,s5300,s5700,s6300,s6700,s7700,s9300,s9700 Ar3200 V200r007c00, V200r005c32, V200r005c20,s12700 V200r008c00, V200r007c00,s5300 V200r008c00, V200r007c00, V200r006c00,s5700 V200r008c00, V200r007c00, V200r006c00,s6300 V200r008c00, V200r007c00,s6700 V200r008c00, V200r007c00,s7700 V200r008c00, V200r007c00, V200r006c00,s9300 V200r008c00, V200r007c00, V200r006c00,s9700 V200r008c00, V200r007c00, V200r006c00,",7.5,HIGH,0.002050000010058284,false,,false,false,false,,,false,false,,2017-04-02T20:00:00.000Z,0
CVE-2016-6206,https://securityvulnerability.io/vulnerability/CVE-2016-6206,,Huawei AR3200 routers with software before V200R007C00SPC600 allow remote attackers to cause a denial of service or execute arbitrary code via a crafted packet.,Huawei,Ar3200 Firmware,9.8,CRITICAL,0.006560000125318766,false,,false,false,false,,,false,false,,2017-03-24T15:00:00.000Z,0
CVE-2016-5368,https://securityvulnerability.io/vulnerability/CVE-2016-5368,,Memory leak in Huawei AR3200 before V200R007C00SPC900 allows remote attackers to cause a denial of service (memory consumption) via a large number of crafted Multiprotocol Label Switching (MPLS) packets.,Huawei,Ar3200 Firmware,7.5,HIGH,0.00203999993391335,false,,false,false,false,,,false,false,,2016-06-30T16:00:00.000Z,0
CVE-2016-3950,https://securityvulnerability.io/vulnerability/CVE-2016-3950,,Huawei AR3200 routers with software before V200R006C10SPC300 allow remote authenticated users to cause a denial of service (restart) via crafted packets.,Huawei,Ar3200 Firmware,6.5,MEDIUM,0.001120000029914081,false,,false,false,false,,,false,false,,2016-04-18T14:00:00.000Z,0