cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2020-1824,https://securityvulnerability.io/vulnerability/CVE-2020-1824,Out of Bounds Read Vulnerabilities in Huawei's Common Open Policy Service Protocol,"Multiple out of bounds read vulnerabilities exist in the Common Open Policy Service (COPS) protocol implemented in certain Huawei products. These vulnerabilities arise during the processing of incoming data packets in the decoding function, where an out-of-bounds read may occur. If successfully exploited, these vulnerabilities could lead to service disruption on the affected devices. This affects a range of products utilizing the COPS protocol, underscoring the need for timely updates and mitigative measures to safeguard against potential security threats.",Huawei,"Ips Module,Ngfw Module,Nip6300,Nip6600,Nip6800,Secospace Usg6300,Secospace Usg6500,Secospace Usg6600,Usg6000v",5.3,MEDIUM,0.0004600000102072954,false,,false,false,false,,false,false,false,,2024-12-28T06:37:14.149Z,0
CVE-2020-1823,https://securityvulnerability.io/vulnerability/CVE-2020-1823,Out of Bounds Read Vulnerabilities in Huawei COPS Implementation,"The vulnerabilities present in the implementation of the Common Open Policy Service (COPS) protocol in specific Huawei products allow for multiple out of bounds (OOB) read conditions. These occur when the decoding function processes incoming data packets, potentially leading to unauthorized access to sensitive information or disruption of service on the affected device. Various Huawei products including routers, switches, and firewalls are affected, highlighting the significance of monitoring and mitigating such security risks to maintain device integrity and operational continuity.",Huawei,"Ips Module,Ngfw Module,Nip6300,Nip6600,Nip6800,Secospace Usg6300,Secospace Usg6500,Secospace Usg6600,Usg6000v",5.3,MEDIUM,0.0004600000102072954,false,,false,false,false,,false,false,false,,2024-12-28T06:29:49.051Z,0
CVE-2020-1822,https://securityvulnerability.io/vulnerability/CVE-2020-1822,Out of Bounds Read Vulnerabilities in Huawei's COPS Implementation,"Multiple out of bounds read vulnerabilities exist in the implementation of the Common Open Policy Service (COPS) protocol within various Huawei networking products. These vulnerabilities may arise during the processing of incoming data packets in the specific decoding function. Exploitation of these vulnerabilities could lead to unintended behavior, potentially disrupting service operations on the affected devices. These vulnerabilities are associated with several identified issues, indicating a broader concern regarding the secure handling of data packets in network devices.",Huawei,"Ips Module,Ngfw Module,Nip6300,Nip6600,Nip6800,Secospace Usg6300,Secospace Usg6500,Secospace Usg6600,Usg6000v",5.3,MEDIUM,0.0004600000102072954,false,,false,false,false,,false,false,false,,2024-12-28T06:21:04.473Z,0
CVE-2020-1821,https://securityvulnerability.io/vulnerability/CVE-2020-1821,Out of Bounds Read Vulnerabilities in Huawei Products,"Multiple out of bounds read vulnerabilities exist in the implementation of the Common Open Policy Service (COPS) protocol in certain Huawei devices. These vulnerabilities arise during the decoding of incoming data packets, which can result in an attacker reading memory that should not be accessible. Exploiting these vulnerabilities successfully can lead to significant service disruption on affected devices, impacting overall network reliability. It is crucial for users and administrators of Huawei devices to apply the necessary security patches to mitigate the risks associated with these vulnerabilities.",Huawei,"Ips Module,Ngfw Module,Nip6300,Nip6600,Nip6800,Secospace Usg6300,Secospace Usg6500,Secospace Usg6600,Usg6000v",5.3,MEDIUM,0.0004600000102072954,false,,false,false,false,,false,false,false,,2024-12-28T06:16:58.770Z,0
CVE-2020-1820,https://securityvulnerability.io/vulnerability/CVE-2020-1820,Out of Bounds Read Vulnerabilities in Huawei Common Open Policy Service Protocol,"Multiple out of bounds read vulnerabilities have been identified within the implementation of the Common Open Policy Service (COPS) protocol in certain Huawei products. These vulnerabilities arise due to improper handling of incoming data packets, which can lead to disruptions in service. When the decoding function processes data, it may read beyond allocated boundaries, creating potential avenues for exploitation. Successful execution of such exploits could result in service interruption on affected devices, impacting network stability and performance. The vulnerabilities are associated with multiple vulnerability IDs, underscoring the need for organizations utilizing these devices to assess their exposure and apply necessary patches as outlined in Huawei's advisory.",Huawei,"Ips Module,Ngfw Module,Nip6300,Nip6600,Nip6800,Secospace Usg6300,Secospace Usg6500,Secospace Usg6600,Usg6000v",5.3,MEDIUM,0.0004600000102072954,false,,false,false,false,,false,false,false,,2024-12-28T06:11:17.446Z,0
CVE-2020-1819,https://securityvulnerability.io/vulnerability/CVE-2020-1819,Out-of-Bounds Read Vulnerabilities in Huawei Products' COPS Implementation,"Huawei products experience a set of out-of-bounds read vulnerabilities within the implementation of the Common Open Policy Service (COPS) protocol. These vulnerabilities may be triggered during the processing of incoming data packets by the specific decoding function, leading to potential service disruptions on affected devices. Individuals and organizations using Huawei products should be aware of these issues and take necessary precautions to safeguard their systems.",Huawei,"Ips Module,Ngfw Module,Nip6300,Nip6600,Nip6800,Secospace Usg6300,Secospace Usg6500,Secospace Usg6600,Usg6000v",5.3,MEDIUM,0.0004600000102072954,false,,false,false,false,,false,false,false,,2024-12-27T10:05:47.224Z,0
CVE-2020-1818,https://securityvulnerability.io/vulnerability/CVE-2020-1818,Out-of-Bounds Read Vulnerabilities in Huawei Common Open Policy Service,"Multiple out-of-bounds read vulnerabilities exist in the implementation of the Common Open Policy Service (COPS) protocol found in various Huawei products. When processing incoming data packets, the specific decoding function may allow for out-of-bounds reads, leading to potential service disruptions on affected devices. Successful exploitation of these vulnerabilities can result in serious operational issues, making it crucial for users of the impacted Huawei network devices to apply appropriate security measures promptly. Huawei has designated several identification numbers for these vulnerabilities, which highlights the urgency of the situation.",Huawei,"Ips Module,Ngfw Module,Nip6300,Nip6600,Nip6800,Secospace Usg6300,Secospace Usg6500,Secospace Usg6600,Usg6000v",5.3,MEDIUM,0.0004600000102072954,false,,false,false,false,,false,false,false,,2024-12-27T10:02:45.710Z,0
CVE-2021-22321,https://securityvulnerability.io/vulnerability/CVE-2021-22321,,"There is a use-after-free vulnerability in a Huawei product. A module cannot deal with specific operations in special scenarios. Attackers can exploit this vulnerability by performing malicious operations. This can cause memory use-after-free, compromising normal service. Affected product include some versions of NIP6300, NIP6600, NIP6800, S1700, S2700, S5700, S6700 , S7700, S9700, Secospace USG6300, Secospace USG6500, Secospace USG6600 and USG9500.",Huawei,Nip6600;nip6800;s12700;s1700;s2700;s5700;s6700;s7700;s9700;secospace Usg6300;secospace Usg6500;secospace Usg6600;usg9500,5.3,MEDIUM,0.0009200000204145908,false,,false,false,false,,,false,false,,2021-03-22T19:03:52.000Z,0
CVE-2021-22320,https://securityvulnerability.io/vulnerability/CVE-2021-22320,,"There is a denial of service vulnerability in Huawei products. A module cannot deal with specific messages correctly. Attackers can exploit this vulnerability by sending malicious messages to an affected module. This can lead to denial of service. Affected product include some versions of IPS Module, NGFW Module, NIP6600, NIP6800, Secospace USG6300, Secospace USG6500 and Secospace USG6600.",Huawei,Ips Module;ngfw Module;nip6600;nip6800;secospace Usg6300;secospace Usg6500;secospace Usg6600,7.5,HIGH,0.0010300000431016088,false,,false,false,false,,,false,false,,2021-03-22T18:41:58.000Z,0
CVE-2020-9213,https://securityvulnerability.io/vulnerability/CVE-2020-9213,,"There is a denial of service vulnerability in some huawei products. In specific scenarios, due to the improper handling of the packets, an attacker may craft many specific packets. Successful exploit may cause some services to be abnormal. Affected products include some versions of NGFW Module, NIP6300, NIP6600, NIP6800, Secospace USG6300, Secospace USG6500, Secospace USG6600 and SG9500.",Huawei,Ngfw Module;nip6300;nip6600;nip6800;secospace Usg6300;secospace Usg6500;secospace Usg6600;usg9500,7.5,HIGH,0.0010300000431016088,false,,false,false,false,,,false,false,,2021-03-22T17:39:26.000Z,0
CVE-2020-1866,https://securityvulnerability.io/vulnerability/CVE-2020-1866,,"There is an out-of-bounds read vulnerability in several products. The software reads data past the end of the intended buffer when parsing certain crafted DHCP messages. Successful exploit could cause certain service abnormal. Affected product versions include:NIP6800 versions V500R001C30,V500R001C60SPC500,V500R005C00;S12700 versions V200R008C00;S2700 versions V200R008C00;S5700 versions V200R008C00;S6700 versions V200R008C00;S7700 versions V200R008C00;S9700 versions V200R008C00;Secospace USG6600 versions V500R001C30SPC200,V500R001C30SPC600,V500R001C60SPC500,V500R005C00;USG9500 versions V500R001C30SPC300,V500R001C30SPC600,V500R001C60SPC500,V500R005C00.",Huawei,Nip6800;s12700;s2700;s5700;s6700;s7700;s9700;secospace Usg6600;usg9500,6.5,MEDIUM,0.0006000000284984708,false,,false,false,false,,,false,false,,2021-01-13T22:22:04.000Z,0
CVE-2020-9201,https://securityvulnerability.io/vulnerability/CVE-2020-9201,,"There is an out-of-bounds read vulnerability in some versions of NIP6800, Secospace USG6600 and USG9500. The software reads data past the end of the intended buffer when parsing DHCP messages including crafted parameter. Successful exploit could cause certain service abnormal.",Huawei,Nip6800;secospace Usg6600;usg9500,6.5,MEDIUM,0.0006000000284984708,false,,false,false,false,,,false,false,,2020-12-24T15:44:52.000Z,0
CVE-2019-19415,https://securityvulnerability.io/vulnerability/CVE-2019-19415,,"The SIP module of some Huawei products have a denial of service (DoS) vulnerability. A remote attacker could exploit these three vulnerabilities by sending the specially crafted messages to the affected device. Due to the insufficient verification of the packets, successful exploit could allow the attacker to cause buffer overflow and dead loop, leading to DoS condition. Affected products can be found in https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-sip-en.",Huawei,"Ar120-s,Ar1200,Ar1200-s,Ar150,Ar150-s,Ar160,Ar200,Ar200-s,Ar2200,Ar2200-s,Ar3200,Ar3600,Ar510,Dp300,Ips Module,Ngfw Module,Nip6300,Nip6600,Nip6800,Netengine16ex,Rse6500,Smc2.0,Srg1300,Srg2300,Srg3300,Svn5600,Svn5800,Svn5800-c,Semg9811,Secospace Usg6300,Secospace Usg6500,Secospace Usg6600,Softco,Te30,Te40,Te50,Te60,Tp3206,Usg9500,Usg9520,Usg9560,Vp9660,VieWPoint 8660,VieWPoint 9030,Espace U1910,Espace U1911,Espace U1930,Espace U1960,Espace U1980,Espace U1981",7.5,HIGH,0.0017900000093504786,false,,false,false,false,,,false,false,,2020-07-08T16:58:31.000Z,0
CVE-2019-19416,https://securityvulnerability.io/vulnerability/CVE-2019-19416,,"The SIP module of some Huawei products have a denial of service (DoS) vulnerability. A remote attacker could exploit these three vulnerabilities by sending the specially crafted messages to the affected device. Due to the insufficient verification of the packets, successful exploit could allow the attacker to cause buffer overflow and dead loop, leading to DoS condition. Affected products can be found in https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-sip-en.",Huawei,"Ar120-s,Ar1200,Ar1200-s,Ar150,Ar150-s,Ar160,Ar200,Ar200-s,Ar2200,Ar2200-s,Ar3200,Ar3600,Ar510,Dp300,Ips Module,Ngfw Module,Nip6300,Nip6600,Nip6800,Netengine16ex,Rse6500,Smc2.0,Srg1300,Srg2300,Srg3300,Svn5600,Svn5800,Svn5800-c,Semg9811,Secospace Usg6300,Secospace Usg6500,Secospace Usg6600,Softco,Te30,Te40,Te50,Te60,Tp3206,Usg9500,Usg9520,Usg9560,Vp9660,VieWPoint 8660,VieWPoint 9030,Espace U1910,Espace U1911,Espace U1930,Espace U1960,Espace U1980,Espace U1981",7.5,HIGH,0.0017900000093504786,false,,false,false,false,,,false,false,,2020-07-08T16:55:48.000Z,0
CVE-2019-19417,https://securityvulnerability.io/vulnerability/CVE-2019-19417,,"The SIP module of some Huawei products have a denial of service (DoS) vulnerability. A remote attacker could exploit these three vulnerabilities by sending the specially crafted messages to the affected device. Due to the insufficient verification of the packets, successful exploit could allow the attacker to cause buffer overflow and dead loop, leading to DoS condition. Affected products can be found in https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-sip-en.",Huawei,"Ar120-s,Ar1200,Ar1200-s,Ar150,Ar150-s,Ar160,Ar200,Ar200-s,Ar2200,Ar2200-s,Ar3200,Ar3600,Ar510,Dp300,Ips Module,Ngfw Module,Nip6300,Nip6600,Nip6800,Netengine16ex,Rse6500,Smc2.0,Srg1300,Srg2300,Srg3300,Svn5600,Svn5800,Svn5800-c,Semg9811,Secospace Usg6300,Secospace Usg6500,Secospace Usg6600,Softco,Te30,Te40,Te50,Te60,Tp3206,Usg9500,Usg9520,Usg9560,Vp9660,VieWPoint 8660,VieWPoint 9030,Espace U1910,Espace U1911,Espace U1930,Espace U1960,Espace U1980,Espace U1981",7.5,HIGH,0.0017900000093504786,false,,false,false,false,,,false,false,,2020-07-08T16:53:05.000Z,0
CVE-2020-9099,https://securityvulnerability.io/vulnerability/CVE-2020-9099,,Huawei products IPS Module; NGFW Module; NIP6300; NIP6600; NIP6800; Secospace USG6300; Secospace USG6500; Secospace USG6600; USG9500 with versions of V500R001C00; V500R001C20; V500R001C30; V500R001C50; V500R001C60; V500R001C80; V500R005C00; V500R005C10; V500R005C20; V500R002C00; V500R002C10; V500R002C20; V500R002C30 have an improper authentication vulnerability. Attackers need to perform some operations to exploit the vulnerability. Successful exploit may obtain certain permissions on the device.,Huawei,Ips Module; Ngfw Module; Nip6300; Nip6600; Nip6800; Secospace Usg6300; Secospace Usg6500; Secospace Usg6600; Usg9500,9.8,CRITICAL,0.0030900000128895044,false,,false,false,false,,,false,false,,2020-06-08T13:55:12.000Z,0
CVE-2020-1883,https://securityvulnerability.io/vulnerability/CVE-2020-1883,,Huawei products NIP6800;Secospace USG6600;USG9500 have a memory leak vulnerability. An attacker with high privileges exploits this vulnerability by continuously performing specific operations. Successful exploitation of this vulnerability can cause service abnormal.,Huawei,"Nip6800,Secospace Usg6600,Usg9500",4.9,MEDIUM,0.0008099999977275729,false,,false,false,false,,,false,false,,2020-06-05T14:19:43.000Z,0
CVE-2020-1877,https://securityvulnerability.io/vulnerability/CVE-2020-1877,,NIP6800;Secospace USG6600;USG9500 with versions of V500R001C30; V500R001C60SPC500; V500R005C00SPC100 have an invalid pointer access vulnerability. The software system access an invalid pointer when administrator log in to the device and performs some operations. Successful exploit could cause certain process reboot.,Huawei,Nip6800;secospace Usg6600;usg9500,4.4,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2020-02-28T18:48:56.000Z,0
CVE-2020-1876,https://securityvulnerability.io/vulnerability/CVE-2020-1876,,"NIP6800;Secospace USG6600;USG9500 with versions of V500R001C30; V500R001C60SPC500; V500R005C00SPC100 have an out-of-bounds write vulnerability. An unauthenticated attacker crafts malformed packets with specific parameter and sends the packets to the affected products. Due to insufficient validation of packets, which may be exploited to cause the process reboot.",Huawei,Nip6800;secospace Usg6600;usg9500,7.5,HIGH,0.0010999999940395355,false,,false,false,false,,,false,false,,2020-02-28T18:42:04.000Z,0
CVE-2020-1881,https://securityvulnerability.io/vulnerability/CVE-2020-1881,,"NIP6800;Secospace USG6600;USG9500 products with versions of V500R001C30; V500R001C60SPC500; V500R005C00SPC100 have have a resource management error vulnerability. An attacker needs to perform specific operations to trigger a function of the affected device. Due to improper resource management of the function, the vulnerability can be exploited to cause service abnormal on affected devices.",Huawei,Nip6800;secospace Usg6600;usg9500,7.5,HIGH,0.0011599999852478504,false,,false,false,false,,,false,false,,2020-02-28T18:33:30.000Z,0
CVE-2020-1860,https://securityvulnerability.io/vulnerability/CVE-2020-1860,,"NIP6800;Secospace USG6600;USG9500 products with versions of V500R001C30; V500R001C60SPC500; V500R005C00SPC100 have an access control bypass vulnerability. Attackers that can access to the internal network can exploit this vulnerability with careful deployment. Successful exploit may cause the access control to be bypassed, and attackers can directly access the Internet.",Huawei,Nip6800;secospace Usg6600;usg9500,7.5,HIGH,0.0008399999933317304,false,,false,false,false,,,false,false,,2020-02-28T18:28:16.000Z,0
CVE-2020-1874,https://securityvulnerability.io/vulnerability/CVE-2020-1874,,NIP6800;Secospace USG6600;USG9500 products versions of V500R001C30; V500R001C60SPC500; V500R005C00SPC100 have a invalid pointer access vulnerability. The software system access an invalid pointer when operator logs in to the device and performs some operations. Successful exploit could cause certain process reboot.,Huawei,Nip6800;secospace Usg6600;usg9500,5.5,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2020-02-28T18:21:52.000Z,0
CVE-2020-1873,https://securityvulnerability.io/vulnerability/CVE-2020-1873,,"NIP6800;Secospace USG6600;USG9500 products with versions of V500R001C30; V500R001C60SPC500; V500R005C00SPC100 have an out-of-bounds read vulnerability. An unauthenticated attacker crafts malformed message with specific parameter and sends the message to the affected products. Due to insufficient validation of message, which may be exploited to cause the device reboot.",Huawei,Nip6800;secospace Usg6600;usg9500,7.5,HIGH,0.0010999999940395355,false,,false,false,false,,,false,false,,2020-02-28T18:14:50.000Z,0
CVE-2020-1875,https://securityvulnerability.io/vulnerability/CVE-2020-1875,,"NIP6800;Secospace USG6600;USG9500 products versions of V500R001C30; V500R001C60SPC500; V500R005C00SPC100 have an invalid pointer access vulnerability. The software system access an invalid pointer when an abnormal condition occurs in certain operation. Successful exploit could cause certain process reboot. Affected product versions include:NIP6800 versions V500R001C30,V500R001C60SPC500;Secospace USG6600 versions V500R001C30SPC200,V500R001C30SPC600,V500R001C60SPC500;USG9500 versions V500R001C30SPC200,V500R001C30SPC600,V500R001C60SPC500.",Huawei,Nip6800;secospace Usg6600;usg9500,5.5,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2020-02-28T18:05:21.000Z,0
CVE-2020-1814,https://securityvulnerability.io/vulnerability/CVE-2020-1814,,"Huawei NIP6800 versions V500R001C30, V500R001C60SPC500, and V500R005C00; Secospace USG6600 and USG9500 versions V500R001C30SPC200, V500R001C30SPC600, V500R001C60SPC500, and V500R005C00 have a Dangling pointer dereference vulnerability. An authenticated attacker may do some special operations in the affected products in some special scenarios to exploit the vulnerability. Due to improper race conditions of different operations, successful exploit will lead to Dangling pointer dereference, causing some service abnormal.",Huawei,"Nip6800,Secospace Usg6600, Usg9500",5.3,MEDIUM,0.0008099999977275729,false,,false,false,false,,,false,false,,2020-02-18T01:53:40.000Z,0