cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2021-39999,https://securityvulnerability.io/vulnerability/CVE-2021-39999,Buffer Overflow Vulnerability in Huawei eSE620X Products,"A buffer overflow vulnerability exists in Huawei's eSE620X products, specifically in the vESS V100R001C10SPC200 and V100R001C20SPC200 versions. This vulnerability allows an attacker to exploit the system by sending specially crafted messages due to inadequate validation of incoming packets. If successfully exploited, this flaw could lead to a denial of service condition, impacting the availability of the affected devices. Organizations using vulnerable versions are advised to implement appropriate security measures to mitigate potential risks.",Huawei,Ese620x Vess,7.5,HIGH,0.0008900000248104334,false,,false,false,false,,,false,false,,2022-07-12T14:15:00.000Z,0
CVE-2021-39995,https://securityvulnerability.io/vulnerability/CVE-2021-39995,Out-of-Bounds Read Vulnerability in Huawei OpenHpi Software,"An out-of-bounds read vulnerability has been identified in certain Huawei products using OpenHpi software for hardware management. This flaw occurs in a function that processes data returned from OpenHpi, potentially allowing attackers to trigger a denial of service. Affected products include specific versions of eCNS280_TD and eSE620X. Users are encouraged to implement available patches to mitigate risks associated with this vulnerability.",Huawei,Ecns280 Td;ese620x Vess,6.5,MEDIUM,0.0008099999977275729,false,,false,false,false,,,false,false,,2021-11-29T15:34:09.000Z,0
CVE-2021-22396,https://securityvulnerability.io/vulnerability/CVE-2021-22396,,"There is a privilege escalation vulnerability in some Huawei products. Due to improper privilege management, a local attacker with common privilege may access some specific files in the affected products. Successful exploit will cause privilege escalation.Affected product versions include:eCNS280_TD V100R005C00,V100R005C10;eSE620X vESS V100R001C10SPC200,V100R001C20SPC200.",Huawei,Ecns280 Td;ese620x Vess,7.8,HIGH,0.0004199999966658652,false,,false,false,false,,,false,false,,2021-08-02T16:08:35.000Z,0
CVE-2021-22383,https://securityvulnerability.io/vulnerability/CVE-2021-22383,,"There is an out-of-bounds read vulnerability in eCNS280_TD V100R005C10 and eSE620X vESS V100R001C10SPC200, V100R001C20SPC200, V200R001C00SPC300. The vulnerability is due to a message-handling function that contains an out-of-bounds read vulnerability. An attacker can exploit this vulnerability by sending a specific message to the target device, which could cause a Denial of Service (DoS).",Huawei,Ecns280 Td;ese620x Vess,4.9,MEDIUM,0.0008099999977275729,false,,false,false,false,,,false,false,,2021-06-22T18:59:03.000Z,0
CVE-2021-22366,https://securityvulnerability.io/vulnerability/CVE-2021-22366,,"There is an out-of-bounds read vulnerability in eSE620X vESS V100R001C10SPC200, V100R001C20SPC200, V200R001C00SPC300. The vulnerability is due to a function that handles an internal message contains an out-of-bounds read vulnerability. An attacker could crafted messages between system process, successful exploit could cause Denial of Service (DoS).",Huawei,Ese620x Vess,5.5,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2021-06-22T17:56:42.000Z,0
CVE-2021-22365,https://securityvulnerability.io/vulnerability/CVE-2021-22365,,"There is an out of bounds read vulnerability in eSE620X vESS V100R001C10SPC200, V100R001C20SPC200, V200R001C00SPC300. A local attacker can exploit this vulnerability by sending specific message to the target device. Due to insufficient validation of internal message, successful exploit may cause the process and the service abnormal.",Huawei,Ese620x Vess,3.3,LOW,0.0004199999966658652,false,,false,false,false,,,false,false,,2021-06-22T17:46:09.000Z,0
CVE-2021-22361,https://securityvulnerability.io/vulnerability/CVE-2021-22361,,"There is an improper authorization vulnerability in eCNS280 V100R005C00, V100R005C10 and eSE620X vESS V100R001C10SPC200, V100R001C20SPC200. A file access is not authorized correctly. Attacker with low access may launch privilege escalation in a specific scenario. This may compromise the normal service.",Huawei,Ecns280;ese620x Vess,7.8,HIGH,0.0004400000034365803,false,,false,false,false,,,false,false,,2021-06-22T17:41:18.000Z,0