Skip to main content
CVE-2013-4630 HIGH POC THREAT Act Now

Stack-based buffer overflow on Huawei AR 150, 200, 1200, 2200, and 3200 routers, when SNMPv3 debugging is enabled, allows remote attackers to execute arbitrary code via malformed SNMPv3 requests. Rated high severity (CVSS 7.6), this vulnerability is remotely exploitable. Public exploit code available and EPSS exploitation probability 19.5%.

Buffer Overflow Huawei RCE Ar 1200 Ar 150 +3
NVD Exploit-DB
CVSS 2.0
7.6
EPSS
19.5%
CVE-2013-4631 HIGH POC This Week

Huawei AR 150, 200, 1200, 2200, and 3200 routers, when SNMPv3 is enabled, allow remote attackers to cause a denial of service (device crash) via malformed SNMPv3 requests that leverage unspecified. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Huawei Denial Of Service Ar 1200 Ar 150 +3
NVD Exploit-DB
CVSS 2.0
7.8
EPSS
4.2%
CVE-2013-1612 HIGH POC This Week

Buffer overflow in secars.dll in the management console in Symantec Endpoint Protection Manager (SEPM) 12.1.x before 12.1.3, and Symantec Endpoint Protection Center (SPC) Small Business Edition. Rated high severity (CVSS 7.9). Public exploit code available and no vendor patch available.

Buffer Overflow RCE Endpoint Protection Manager Endpoint Protection Center
NVD Exploit-DB
CVSS 2.0
7.9
EPSS
2.7%
CVE-2013-4629 HIGH This Week

The Huawei viewpoint VP9610 and VP9620 units for the Huawei Video Conference system do not update the Session ID upon successful establishment of a login session, which allows remote authenticated. Rated high severity (CVSS 8.5), this vulnerability is remotely exploitable. No vendor patch available.

Huawei Authentication Bypass Vp 9610 Vp 9620
NVD
CVSS 2.0
8.5
EPSS
0.2%
CVE-2013-4632 HIGH This Week

The Huawei Access Router (AR) before V200R002SPC003 allows remote attackers to cause a denial of service (device reset) via a crafted field in a DHCP request, as demonstrated by a request from an IP. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Huawei Denial Of Service Access Router
NVD
CVSS 2.0
7.8
EPSS
0.2%
CVE-2013-4634 HIGH This Week

SQL injection vulnerability in the jQuery autocomplete for indexed_search (rzautocomplete) extension before 0.0.9 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

SQLi Rzautocomplete
NVD
CVSS 2.0
7.5
EPSS
0.7%
CVE-2012-6571 HIGH This Week

The HTTP module in the (1) Branch Intelligent Management System (BIMS) and (2) web management components on Huawei AR routers and S2000, S3000, S3500, S3900, S5100, S5600, and S7800 switches uses. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Huawei Information Disclosure Ar 18 1X Ar 18 2X Ar 18 3X +15
NVD
CVSS 2.0
7.5
EPSS
0.2%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy