cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2021-37129,https://securityvulnerability.io/vulnerability/CVE-2021-37129,Out of Bound Write Vulnerability in Huawei Network Products,"An out of bounds write vulnerability exists in multiple Huawei network products, triggered by a failure to properly verify input parameters. An attacker exploiting this vulnerability could potentially corrupt memory, leading to a denial of service condition. This issue affects a range of products, demanding immediate attention and remediation to safeguard network integrity.",Huawei,Iips Module;ngfw Module;nip6600;s12700;s1700;s2700;s5700;s6700;s7700;s9700;usg9500,7.5,HIGH,0.0010300000431016088,false,,false,false,false,,,false,false,,2021-10-27T00:41:44.000Z,0
CVE-2021-22357,https://securityvulnerability.io/vulnerability/CVE-2021-22357,Denial of Service Vulnerability in Huawei Network Products,"A denial of service vulnerability exists in certain Huawei network products due to insufficient input validation in a specific module. Attackers could exploit this flaw by sending specially crafted messages, which could lead to a disruption of service for affected devices. This vulnerability impacts various models of Huawei products, necessitating prompt attention to ensure network stability and security.",Huawei,S12700;s5700;s6700;s7700,7.5,HIGH,0.0010300000431016088,false,,false,false,false,,,false,false,,2021-08-23T19:30:58.000Z,0
CVE-2021-22329,https://securityvulnerability.io/vulnerability/CVE-2021-22329,,"There has a license management vulnerability in some Huawei products. An attacker with high privilege needs to perform specific operations to exploit the vulnerability on the affected device. Due to improper license management of the device, as a result, the license file can be applied and affect integrity of the device. Affected product versions include:S12700 V200R007C01,V200R007C01B102,V200R008C00,V200R010C00SPC300,V200R011C00,V200R011C00SPC100,V200R011C10;S1700 V200R010C00SPC300,V200R011C00,V200R011C00SPC100,V200R011C10;S2700 V200R008C00,V200R010C00SPC300,V200R011C00,V200R011C00SPC100,V200R011C10;S5700 V200R008C00,V200R010C00SPC300,V200R011C00,V200R011C00SPC100,V200R011C10,V200R011C10SPC100;S6700 V200R008C00,V200R010C00SPC300,V200R011C00,V200R011C00SPC100,V200R011C10,V200R011C10SPC100;S7700 V200R008C00,V200R010C00SPC300,V200R011C00,V200R011C00SPC100,V200R011C10;S9700 V200R007C01,V200R007C01B102,V200R008C00,V200R010C00SPC300,V200R011C00,V200R011C00SPC100,V200R011C10.",Huawei,S12700;s1700;s2700;s5700;s6700;s7700;s9700,4.9,MEDIUM,0.000539999979082495,false,,false,false,false,,,false,false,,2021-06-29T19:05:31.000Z,0
CVE-2021-22377,https://securityvulnerability.io/vulnerability/CVE-2021-22377,,"There is a command injection vulnerability in S12700 V200R019C00SPC500, S2700 V200R019C00SPC500, S5700 V200R019C00SPC500, S6700 V200R019C00SPC500 and S7700 V200R019C00SPC500. A module does not verify specific input sufficiently. Attackers can exploit this vulnerability by sending malicious parameters to inject command. This can compromise normal service.",Huawei,S12700;s2700;s5700;s6700;s7700,7.2,HIGH,0.001129999989643693,false,,false,false,false,,,false,false,,2021-06-22T18:10:10.000Z,0
CVE-2021-22359,https://securityvulnerability.io/vulnerability/CVE-2021-22359,,"There is a denial of service vulnerability in the verisions V200R005C00SPC500 of S5700 and V200R005C00SPC500 of S6700. An attacker could exploit this vulnerability by sending specific message to a targeted device. Due to insufficient input validation, successful exploit can cause the service abnormal.",Huawei,S5700;s6700,7.5,HIGH,0.0010300000431016088,false,,false,false,false,,,false,false,,2021-05-27T12:40:09.000Z,0
CVE-2021-22321,https://securityvulnerability.io/vulnerability/CVE-2021-22321,,"There is a use-after-free vulnerability in a Huawei product. A module cannot deal with specific operations in special scenarios. Attackers can exploit this vulnerability by performing malicious operations. This can cause memory use-after-free, compromising normal service. Affected product include some versions of NIP6300, NIP6600, NIP6800, S1700, S2700, S5700, S6700 , S7700, S9700, Secospace USG6300, Secospace USG6500, Secospace USG6600 and USG9500.",Huawei,Nip6600;nip6800;s12700;s1700;s2700;s5700;s6700;s7700;s9700;secospace Usg6300;secospace Usg6500;secospace Usg6600;usg9500,5.3,MEDIUM,0.0009200000204145908,false,,false,false,false,,,false,false,,2021-03-22T19:03:52.000Z,0
CVE-2020-1866,https://securityvulnerability.io/vulnerability/CVE-2020-1866,,"There is an out-of-bounds read vulnerability in several products. The software reads data past the end of the intended buffer when parsing certain crafted DHCP messages. Successful exploit could cause certain service abnormal. Affected product versions include:NIP6800 versions V500R001C30,V500R001C60SPC500,V500R005C00;S12700 versions V200R008C00;S2700 versions V200R008C00;S5700 versions V200R008C00;S6700 versions V200R008C00;S7700 versions V200R008C00;S9700 versions V200R008C00;Secospace USG6600 versions V500R001C30SPC200,V500R001C30SPC600,V500R001C60SPC500,V500R005C00;USG9500 versions V500R001C30SPC300,V500R001C30SPC600,V500R001C60SPC500,V500R005C00.",Huawei,Nip6800;s12700;s2700;s5700;s6700;s7700;s9700;secospace Usg6600;usg9500,6.5,MEDIUM,0.0006000000284984708,false,,false,false,false,,,false,false,,2021-01-13T22:22:04.000Z,0
CVE-2020-1810,https://securityvulnerability.io/vulnerability/CVE-2020-1810,,There is a weak algorithm vulnerability in some Huawei products. The affected products use the RSA algorithm in the SSL key exchange algorithm which have been considered as a weak algorithm. Attackers may exploit this vulnerability to leak some information.,Huawei,Cloudengine 12800;s5700;s6700,5.3,MEDIUM,0.0008399999933317304,false,,false,false,false,,,false,false,,2020-01-09T17:44:54.000Z,0
CVE-2019-5304,https://securityvulnerability.io/vulnerability/CVE-2019-5304,,"Some Huawei products have a buffer error vulnerability. An unauthenticated, remote attacker could send specific MPLS Echo Request messages to the target products. Due to insufficient input validation of some parameters in the messages, successful exploit may cause the device to reset.",Huawei,Ar120-s;ar1200;ar1200-s;ar150;ar150-s;ar160;ar200;ar200-s;ar2200;ar2200-s;ar3200;ar3600;ips Module;ngfw Module;nip6300;nip6600;netengine16ex;s5700;s6700;srg1300;srg2300;srg3300;secospace Antiddos8000;secospace Usg6300;secospace Usg6500;secospace Usg6600,7.5,HIGH,0.0017900000093504786,false,,false,false,false,,,false,false,,2020-01-03T14:33:41.000Z,0
CVE-2019-5290,https://securityvulnerability.io/vulnerability/CVE-2019-5290,,"Huawei S5700 and S6700 have a DoS security vulnerability. Attackers with certain permissions perform specific operations on affected devices. Because the pointer in the program is not processed properly, the vulnerability can be exploited to cause the device to be abnormal.",Huawei,S5700;s6700,6.5,MEDIUM,0.0008099999977275729,false,,false,false,false,,,false,false,,2019-12-13T14:47:00.000Z,0
CVE-2019-19397,https://securityvulnerability.io/vulnerability/CVE-2019-19397,,There is a weak algorithm vulnerability in some Huawei products. The affected products use weak algorithms by default. Attackers may exploit the vulnerability to cause information leaks.,Huawei,S12700;s1700;s2700;s5700;s6700;s7700;s9700,7.5,HIGH,0.0016799999866634607,false,,false,false,false,,,false,false,,2019-12-13T14:19:12.000Z,0
CVE-2019-5285,https://securityvulnerability.io/vulnerability/CVE-2019-5285,,"Some Huawei S series switches have a DoS vulnerability. An unauthenticated remote attacker can send crafted packets to the affected device to exploit this vulnerability. Due to insufficient verification of the packets, successful exploitation may cause the device reboot and denial of service (DoS) condition. (Vulnerability ID: HWPSIRT-2019-03109)",Huawei,"S12700, S12700, S12700, S12700, S12700, S12700, S12700, S12700, S1700, S1700, S1700, S1700, S1700, S1700, S2300, S2300, S2300, S2300, S2300, S2300, S2300, S2700, S2700, S2700, S2700, S2700, S2700, S2700, S2700, S5300, S5300, S5300, S5300, S5300, S5300, S5300, S5700, S5700, S5700, S5700, S5700, S5700, S5700, S5700, S5700, S600-e, S600-e, S600-e, S600-e, S600-e, S6300, S6300, S6300, S6300, S6300, S6300, S6300, S6300, S6700, S6700, S6700, S6700, S6700, S6700, S6700, S6700, S7700, S7700, S7700, S7700, S7700, S7700, S7700, S7700, S7700, S7900, S7900, S7900, S9300, S9300, S9300, S9300, S9300, S9300, S9300, S9300x, S9300x, S9300x, S9300x, S9700, S9700, S9700, S9700, S9700, S9700, S9700, S9700, S9700",7.5,HIGH,0.0020200000144541264,false,,false,false,false,,,false,false,,2019-06-04T18:47:35.000Z,0
CVE-2016-8773,https://securityvulnerability.io/vulnerability/CVE-2016-8773,,"Huawei S5300 with software V200R003C00, V200R007C00, V200R008C00, V200R009C00; S5700 with software V200R001C00, V200R002C00, V200R003C00, V200R005C00, V200R005C03, V200R007C00, V200R008C00, V200R009C00; S6300 with software V200R003C00, V200R005C00, V200R008C00, V200R009C00; S6700 with software V200R001C00, V200R001C01, V200R002C00, V200R003C00, V200R005C00, V200R008C00, V200R009C00; S7700 with software V200R007C00, V200R008C00, V200R009C00; S9300 with software V200R007C00, V200R008C00, V200R009C00; S9700 with software V200R007C00, V200R008C00, V200R009C00; and S12700 with software V200R007C00, V200R007C01, V200R008C00, V200R009C00 allow the attacker to cause a denial of service condition by sending malformed MPLS packets.",Huawei,"S5300,s5700,s6300,s6700,s7700,9300,9700,s12700 S5300 With Software V200r003c00, V200r007c00, V200r008c00, V200r009c00,s5700 With Software V200r001c00, V200r002c00, V200r003c00, V200r005c00, V200r005c03, V200r007c00, V200r008c00, V200r009c00,s6300 With Software V200r003c00, V200r005c00, V200r008c00, V200r009c00,s6700 With Software V200r001c00, V200r001c01, V200r002c00, V200r003c00, V200r005c00, V200r008c00, V200r009c00,s7700 With Software V200r007c00, V200r008c00, V200r009c00,s9300 With Software V200r007c00, V200r008c00, V200r009c00,s9700 With Software V200r007c00, V200r008c00, V200r009c00 And S12700 With Software V200r007c00, V200r007c01, V200r008c00, V200r009c00",7.5,HIGH,0.0010900000343099236,false,,false,false,false,,,false,false,,2017-04-02T20:00:00.000Z,0
CVE-2016-8797,https://securityvulnerability.io/vulnerability/CVE-2016-8797,,"Huawei AR3200 with software V200R007C00, V200R005C32, V200R005C20; S12700 with software V200R008C00, V200R007C00; S5300 with software V200R008C00, V200R007C00, V200R006C00; S5700 with software V200R008C00, V200R007C00, V200R006C00; S6300 with software V200R008C00, V200R007C00; S6700 with software V200R008C00, V200R007C00; S7700 with software V200R008C00, V200R007C00, V200R006C00; S9300 with software V200R008C00, V200R007C00, V200R006C00; and S9700 with software V200R008C00, V200R007C00, V200R006C00 allow remote attackers to send abnormal Multiprotocol Label Switching (MPLS) packets to cause memory exhaustion.",Huawei,"Ar3200,s12700,s5300,s5700,s6300,s6700,s7700,s9300,s9700 Ar3200 V200r007c00, V200r005c32, V200r005c20,s12700 V200r008c00, V200r007c00,s5300 V200r008c00, V200r007c00, V200r006c00,s5700 V200r008c00, V200r007c00, V200r006c00,s6300 V200r008c00, V200r007c00,s6700 V200r008c00, V200r007c00,s7700 V200r008c00, V200r007c00, V200r006c00,s9300 V200r008c00, V200r007c00, V200r006c00,s9700 V200r008c00, V200r007c00, V200r006c00,",7.5,HIGH,0.002050000010058284,false,,false,false,false,,,false,false,,2017-04-02T20:00:00.000Z,0
CVE-2016-2404,https://securityvulnerability.io/vulnerability/CVE-2016-2404,,"Huawei switches S5700, S6700, S7700, S9700 with software V200R001C00SPC300, V200R002C00SPC100, V200R003C00SPC300, V200R005C00SPC500, V200R006C00; S12700 with software V200R005C00SPC500, V200R006C00; ACU2 with software V200R005C00SPC500, V200R006C00 have a permission control vulnerability. If a switch enables Authentication, Authorization, and Accounting (AAA) for permission control and user permissions are not appropriate, AAA users may obtain the virtual type terminal (VTY) access permission, resulting in privilege escalation.",Huawei,"S5700, S6700, S7700, S9700,S12700,ACU2,, S5700, S6700, S7700, S9700 V200R001C00SPC300, V200R002C00SPC100, V200R003C00SPC300, V200R005C00SPC500, V200R006C00,,S12700 V200R005C00SPC500, V200R006C00,,ACU2 V200R005C00SPC500, V200R006C00,",7.5,HIGH,0.0009699999936856329,false,,false,false,false,,,false,false,,2017-04-02T20:00:00.000Z,0
CVE-2014-8572,https://securityvulnerability.io/vulnerability/CVE-2014-8572,,"Huawei AC6605 with software V200R001C00; AC6605 with software V200R002C00; ACU with software V200R001C00; ACU with software V200R002C00; S2300, S3300, S2700, S3700 with software V100R006C05 and earlier versions; S5300, S5700, S6300, S6700 with software V100R006, V200R001, V200R002, V200R003, V200R005C00SPC300 and earlier versions; S7700, S9300, S9300E, S9700 with software V100R006, V200R001, V200R002, V200R003, V200R005C00SPC300 and earlier versions could allow remote attackers to send a special SSH packet to the VRP device to cause a denial of service.",Huawei,"Ac6605,ac6605,acu,s2300, S3300,s2700, S3700,s5300, S5700,s6300, S6700,s7700, S9300,s9300e, S9700, Ac6605 Ac6605 V200r001c00, Ac6605 V200r002c00,acu Acu V200r001c00, Acu V200r002c00,s2300, S3300, V100r006c05 And Earlier Versions,s2700, S3700,s5300, S5700, V100r006,?s6300, S6700 V200r001, V200r002, V200r003, V200r005c00spc300 And Earlier Versions,s7700, S9300, V100r006,s9300e, S9700 V200r001, V200r002, V200r003, V200r005c00spc300 And Earlier Versions,",7.5,HIGH,0.002050000010058284,false,,false,false,false,,,false,false,,2017-04-02T20:00:00.000Z,0
CVE-2014-3224,https://securityvulnerability.io/vulnerability/CVE-2014-3224,,"Huawei Quidway S9700 V200R003C00SPC500, Quidway S9300 V200R003C00SPC500, Quidway S7700 V200R003C00SPC500, Quidway S6700 V200R003C00SPC300, Quidway S6300 V200R003C00SPC300, Quidway S5700 V200R003C00SPC300, Quidway S5300 V200R003C00SPC300 enable attackers to launch DoS attacks by crafting and sending malformed packets to these vulnerable products.",Huawei,"Quidway S9700,quidway S9300,quidway S7700,quidway S6700,quidway S6300,quidway S5700,quidway S5300 Quidway S9700 V200r003c00spc500,quidway S9300 V200r003c00spc500,quidway S7700 V200r003c00spc500,quidway S6700 V200r003c00spc300,quidway S6300 V200r003c00spc300,quidway S5700 V200r003c00spc300,quidway S5300 V200r003c00spc300",7.5,HIGH,0.001180000021122396,false,,false,false,false,,,false,false,,2017-04-02T20:00:00.000Z,0
CVE-2014-4706,https://securityvulnerability.io/vulnerability/CVE-2014-4706,,"Huawei Campus S3700HI with software V200R001C00SPC300; Campus S5700 with software V200R002C00SPC100; Campus S7700 with software V200R003C00SPC300,V200R003C00SPC500; LSW S9700 with software V200R001C00SPC300,V200R003C00SPC300,V200R003C00SPC500; S2350 with software V200R003C00SPC300; S2750 with software V200R003C00SPC300; S5300 with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300; S5700 with software V200R001C00SPC300,V200R003C00SPC300; S6300 with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300; S6700 S3300HI with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300; S7700 with software V200R001C00SPC300; S9300 with software V200R001C00SPC300,V200R003C00SPC300,V200R003C00SPC500; S9300E with software V200R003C00SPC300,V200R003C00SPC500 allow attackers to keep sending malformed packets to cause a denial of service (DoS) attack, aka a heap overflow.",Huawei,"Campus S3700hi, S5700, S6700 S3300hi, S5300, S6300, S9300, S7700,lsw S9700,campus S5700, S6700,campus S7700, S9300e, S2350, S2750,s9300,s9300e, Campus S3700hi With Software V200r001c00spc300,campus S5700 With Software V200r002c00spc100,campus S7700 With Software V200r003c00spc300,v200r003c00spc500,lsw S9700 With Software V200r001c00spc300,v200r003c00spc300,v200r003c00spc500,s2350 With Software V200r003c00spc300,s2750 With Software V200r003c00spc300,s5300 With Software V200r001c00spc300,v200r002c00spc100,v200r003c00spc300,s5700 With Software V200r001c00spc300,v200r003c00spc300,s6300 With Software V200r001c00spc300,v200r002c00spc100,v200r003c00spc300,s6700 S3300hi With Software V200r001c00spc300,v200r002c00spc100,v200r003c00spc300,s7700 With Software V200r001c00spc300,s9300 With Software V200r001c00spc300,v200r003c00spc300,v200r003c00spc500,s9300e With Software V200r003c00spc300,v200r003c00spc500,",7.5,HIGH,0.001290000043809414,false,,false,false,false,,,false,false,,2017-04-02T20:00:00.000Z,0
CVE-2014-4190,https://securityvulnerability.io/vulnerability/CVE-2014-4190,,"Multiple heap-based buffer overflows in Huawei Campus Series Switches S3700HI, S5700, S6700, S3300HI, S5300, S6300, S9300, S7700, and LSW S9700 with software V200R001 before V200R001SPH013; S5700, S6700, S5300, and S6300 with software V200R002 before V200R002SPH005; S7700, S9300, S9300E, S5300, S5700, S6300, S6700, S2350, S2750, and LSW S9700 with software V200R003 before V200R003SPH005; and S7700, S9300, S9300E, and LSW S9700 with software V200R005 before V200R005C00SPC300 allow remote attackers to cause a denial of service (device restart) via a crafted length field in a packet.",Huawei,"Campus Series Switch Software,Campus Lsw S9700,Campus S3300hi,Campus S3700hi,Campus S5300,Campus S5700,Campus S6300,Campus S6700,Campus S7700,Campus S9300",,,0.002099999925121665,false,,false,false,false,,,false,false,,2014-06-17T14:55:00.000Z,0
CVE-2012-4960,https://securityvulnerability.io/vulnerability/CVE-2012-4960,,"The Huawei NE5000E, MA5200G, NE40E, NE80E, ATN, NE40, NE80, NE20E-X6, NE20, ME60, CX600, CX200, CX300, ACU, WLAN AC 6605, S9300, S7700, S2300, S3300, S5300, S3300HI, S5300HI, S5306, S6300, S2700, S3700, S5700, S6700, AR G3, H3C AR(OEM IN), AR 19, AR 29, AR 49, Eudemon100E, Eudemon200, Eudemon300, Eudemon500, Eudemon1000, Eudemon1000E-U/USG5300, Eudemon1000E-X/USG5500, Eudemon8080E/USG9300, Eudemon8160E/USG9300, Eudemon8000E-X/USG9500, E200E-C/USG2200, E200E-X3/USG2200, E200E-X5/USG2200, E200E-X7/USG2200, E200E-C/USG5100, E200E-X3/USG5100, E200E-X5/USG5100, E200E-X7/USG5100, E200E-B/USG2100, E200E-X1/USG2100, E200E-X2/USG2100, SVN5300, SVN2000, SVN5000, SVN3000, NIP100, NIP200, NIP1000, NIP2100, NIP2200, and NIP5100 use the DES algorithm for stored passwords, which makes it easier for context-dependent attackers to obtain cleartext passwords via a brute-force attack.",Huawei,"Me60,S7700,E200 Usg5100,E200e-x2,E200x3,S5306,S5300,S9300,S6700,S2300,S5700,Eudemon300,Eudemon Usg9500,Cx600,Ar G3,Nip200,Ne5000e,S3300,Ne80e,Ar 19\/29\/49,E200e-x1,Eudemon1000,Ne40e,Wlan Ac 6605,H3c Ar\(oem In\),Eudemon 8160e,Eudemon Usg5300,E200 Usg2200,Eudemon8000e-x,Ne40,E200e-b,S5300hi,Eudemon Usg9300,Ne80,Atn,S3700,S3300hi,E200e-c,Eudemon200,E200x7,S6300,Nip5100,Svn5000,Nip1000,Ma5200g,Acu,Ne40e\/80e,Ne20,Eudemon 8080e,Ne20e-x6,Eudemon Usg5500,Nip100,Cx300,Svn5300,E200e-usg2100,Svn3000,S2700,Cx200,Eudemon1000e-u,Eudemon100e,Svn2000,Nip2200,E200x5,Nip2100,Eudemon500,Eudemon1000e-x",,,0.0076500000432133675,false,,false,false,false,,,false,false,,2013-06-20T15:00:00.000Z,0