Skip to main content
CVE-2017-2382 HIGH This Week

An issue was discovered in certain Apple products. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Apple Information Disclosure Mac Os Server
NVD
CVSS 3.0
7.5
EPSS
0.5%
CVE-2017-2429 HIGH This Week

An issue was discovered in certain Apple products. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Apple Authentication Bypass Mac Os X
NVD
CVSS 3.0
7.5
EPSS
0.4%
CVE-2017-2376 HIGH This Week

An issue was discovered in certain Apple products. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Apple Information Disclosure Safari Iphone Os
NVD
CVSS 3.0
7.5
EPSS
0.4%
CVE-2014-8572 HIGH This Week

Huawei AC6605 with software V200R001C00; AC6605 with software V200R002C00; ACU with software V200R001C00; ACU with software V200R002C00; S2300, S3300, S2700, S3700 with software V100R006C05 and. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Huawei Ac6605 Firmware Acu Firmware S Series Firmware +8
NVD
CVSS 3.0
7.5
EPSS
0.3%
CVE-2016-8797 HIGH This Week

Huawei AR3200 with software V200R007C00, V200R005C32, V200R005C20; S12700 with software V200R008C00, V200R007C00; S5300 with software V200R008C00, V200R007C00, V200R006C00; S5700 with software. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Huawei Information Disclosure Ar3200 Firmware S12700 Firmware S5300 Firmware +6
NVD
CVSS 3.0
7.5
EPSS
0.3%
CVE-2017-2484 HIGH This Week

An issue was discovered in certain Apple products. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Apple Information Disclosure Iphone Os
NVD
CVSS 3.0
7.5
EPSS
0.3%
CVE-2016-8773 HIGH This Week

Huawei S5300 with software V200R003C00, V200R007C00, V200R008C00, V200R009C00; S5700 with software V200R001C00, V200R002C00, V200R003C00, V200R005C00, V200R005C03, V200R007C00, V200R008C00,. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Huawei S12700 Firmware S5300 Firmware S5700 Firmware +5
NVD
CVSS 3.0
7.5
EPSS
0.2%
CVE-2016-8796 HIGH This Week

Huawei USG9520 V300R001C01, USG9560 V300R001C01, and USG9580 V300R001C01 allow unauthenticated attackers to send abnormal DHCP request packets to the affected products to trigger a DoS condition. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Huawei Information Disclosure Usg9520 Firmware Usg9580 Firmware Usg9560 Firmware
NVD
CVSS 3.0
7.5
EPSS
0.2%
CVE-2014-3221 HIGH This Week

Huawei Eudemon8000E firewall with software V200R001C01SPC800 and earlier versions allows users to log in to the device using Telnet or SSH. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Huawei Information Disclosure Eudemon8000E Firmware
NVD
CVSS 3.0
7.5
EPSS
0.2%
CVE-2014-3223 HIGH This Week

Huawei S9300 with software before V100R006SPH013 and S2300,S3300,S5300,S6300 with software before V100R006SPH010 support Y.1731 and therefore have the Y.1731 vulnerability in processing special. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Huawei Information Disclosure S9300 Firmware S3300 Firmware S2300 Firmware +2
NVD
CVSS 3.0
7.5
EPSS
0.2%
CVE-2014-9690 HIGH This Week

Huawei home gateways WS318 with software V100R001C01B022 and earlier versions are affected by the PIN offline brute force cracking vulnerability of the WPS protocol because the random number. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Huawei Information Disclosure Ws318 Firmware
NVD
CVSS 3.0
7.5
EPSS
0.2%
CVE-2015-7844 HIGH This Week

Huawei FusionAccess with software V100R005C10,V100R005C20 could allow attackers to craft and send a malformed HDP protocol packet to cause the virtual cloud desktop to be displaying an error and not. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Huawei Information Disclosure Fusionaccess
NVD
CVSS 3.0
7.5
EPSS
0.2%
CVE-2014-4706 HIGH This Week

Huawei Campus S3700HI with software V200R001C00SPC300; Campus S5700 with software V200R002C00SPC100; Campus S7700 with software V200R003C00SPC300,V200R003C00SPC500; LSW S9700 with software. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Denial Of Service Huawei Campus S3700Hi Firmware S5700 Firmware +12
NVD
CVSS 3.0
7.5
EPSS
0.2%
CVE-2014-3224 HIGH This Week

Huawei Quidway S9700 V200R003C00SPC500, Quidway S9300 V200R003C00SPC500, Quidway S7700 V200R003C00SPC500, Quidway S6700 V200R003C00SPC300, Quidway S6300 V200R003C00SPC300, Quidway S5700. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Huawei Information Disclosure Quidway S5300 Firmware Quidway S5700 Firmware Quidway S6300 Firmware +4
NVD
CVSS 3.0
7.5
EPSS
0.2%
CVE-2016-2404 HIGH This Week

Huawei switches S5700, S6700, S7700, S9700 with software V200R001C00SPC300, V200R002C00SPC100, V200R003C00SPC300, V200R005C00SPC500, V200R006C00; S12700 with software V200R005C00SPC500, V200R006C00;. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable. No vendor patch available.

Huawei Privilege Escalation S5700 Firmware S6700 Firmware S7700 Firmware +3
NVD
CVSS 3.0
7.5
EPSS
0.2%
CVE-2014-9692 HIGH This Week

Huawei Tecal RH1288 V2 V100R002C00SPC107 and earlier versions, Tecal RH2265 V2 V100R002C00, Tecal RH2285 V2 V100R002C00SPC115 and earlier versions, Tecal RH2265 V2 V100R002C00, Tecal RH2285H V2. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Huawei Information Disclosure Tecal Rh1288 V2 Firmware Tecal Rh2265 V2 Firmware Tecal Rh2285 V2 Firmware +29
NVD
CVSS 3.0
7.5
EPSS
0.1%
CVE-2016-8798 HIGH This Week

Huawei USG5500 with software V300R001C00 and V300R001C00 allows attackers to bypass the anti-DDoS module of the USGs to cause a denial of service condition on the backend server. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Huawei Authentication Bypass Usg5500 Firmware
NVD
CVSS 3.0
7.5
EPSS
0.1%
CVE-2016-8754 HIGH This Week

Huawei OceanStor 5600 V3 V300R003C00 has a hardcoded SSH key vulnerability; the hardcoded keys are used to encrypt communication data and authenticate different nodes of the devices. Rated high severity (CVSS 7.5), this vulnerability is no authentication required. No vendor patch available.

Huawei Authentication Bypass Oceanstor 5600 V3 Firmware
NVD
CVSS 3.0
7.5
EPSS
0.1%
CVE-2017-2380 HIGH This Week

An issue was discovered in certain Apple products. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Apple Authentication Bypass Iphone Os
NVD
CVSS 3.0
7.5
EPSS
0.1%
CVE-2016-8803 HIGH This Week

The maintenance module in Huawei FusionStorage V100R003C30U1 allows attackers to create documents according to special rules to obtain the OS root privilege of FusionStorage. Rated high severity (CVSS 7.5). No vendor patch available.

Huawei Privilege Escalation Fusionstorage
NVD
CVSS 3.0
7.5
EPSS
0.0%
CVE-2016-8801 HIGH This Week

Huawei OceanStor 5600 V3 with V300R003C00C10 and earlier versions allows attackers with administrator privilege to inject a command into a specific command's parameters, and run this injected command. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Huawei Command Injection Oceanstor 5600 V3 Firmware
NVD
CVSS 3.0
7.2
EPSS
0.2%
CVE-2017-2450 HIGH This Week

An issue was discovered in certain Apple products. Rated high severity (CVSS 7.1), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Denial Of Service Apple Information Disclosure Iphone Os +3
NVD
CVSS 3.0
7.1
EPSS
0.6%
CVE-2017-2439 HIGH This Week

An issue was discovered in certain Apple products. Rated high severity (CVSS 7.1), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Denial Of Service Apple Information Disclosure Iphone Os +3
NVD
CVSS 3.0
7.1
EPSS
0.6%
CVE-2017-2409 HIGH This Week

An issue was discovered in certain Apple products. Rated high severity (CVSS 7.1), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Denial Of Service Apple Information Disclosure Mac Os X
NVD
CVSS 3.0
7.1
EPSS
0.2%
CVE-2016-8794 HIGH This Week

Huawei Mate 8 phones with software Versions before NXT-AL10C00B386, Versions before NXT-CL00C92B386, Versions before NXT-DL00C17B386, Versions before NXT-TL00C01B386; Mate S phones with software. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable. No vendor patch available.

Huawei Authentication Bypass Mate S Firmware Mate 8 Firmware P8 Firmware
NVD
CVSS 3.0
7.1
EPSS
0.0%
CVE-2016-8792 HIGH This Week

Huawei Mate 8 phones with software Versions before NXT-AL10C00B386, Versions before NXT-CL00C92B386, Versions before NXT-DL00C17B386, Versions before NXT-TL00C01B386; Mate S phones with software. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable. No vendor patch available.

Huawei Authentication Bypass Mate S Firmware Mate 8 Firmware P8 Firmware
NVD
CVSS 3.0
7.1
EPSS
0.0%
CVE-2016-8791 HIGH This Week

Huawei Mate 8 phones with software Versions before NXT-AL10C00B386, Versions before NXT-CL00C92B386, Versions before NXT-DL00C17B386, Versions before NXT-TL00C01B386; Mate S phones with software. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable. No vendor patch available.

Huawei Authentication Bypass Mate S Firmware Mate 8 Firmware P8 Firmware
NVD
CVSS 3.0
7.1
EPSS
0.0%
CVE-2016-7585 MEDIUM This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 6.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Apple Information Disclosure Mac Os X
NVD
CVSS 3.0
6.8
EPSS
0.1%
CVE-2016-8775 MEDIUM This Month

Touch Panel (TP) driver in Huawei NEM phones with software Versions before NEM-AL10C00B130, Versions before NEM-UL10C17B160, Versions before NEM-UL10C00B160, Versions before NEM-TL00C01B160 allows. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow RCE Huawei Nem Al10 Firmware Nem L51 Firmware +2
NVD
CVSS 3.0
6.7
EPSS
0.0%
CVE-2016-8774 MEDIUM This Month

The HIFI driver in Huawei Mate 8 phones with software versions before NXT-AL10C00B386, versions before NXT-CL00C92B386, versions before NXT-DL00C17B386, versions before NXT-TL00C01B386; Mate S phones. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow RCE Huawei Mate 8 Firmware Mate S Firmware +2
NVD
CVSS 3.0
6.7
EPSS
0.0%
CVE-2016-8793 MEDIUM This Month

Huawei Mate 8 phones with software Versions before NXT-AL10C00B386, Versions before NXT-CL00C92B386, Versions before NXT-DL00C17B386, Versions before NXT-TL00C01B386; Mate S phones with software. Rated medium severity (CVSS 6.7). No vendor patch available.

Huawei Authentication Bypass Mate S Firmware Mate 8 Firmware P8 Firmware
NVD
CVSS 3.0
6.7
EPSS
0.0%
CVE-2017-2386 MEDIUM This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Apple Information Disclosure Safari Iphone Os Tvos
NVD
CVSS 3.0
6.5
EPSS
0.4%
CVE-2017-2424 MEDIUM This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Apple Information Disclosure Safari Iphone Os
NVD
CVSS 3.0
6.5
EPSS
0.4%
CVE-2017-2453 MEDIUM This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Apple Information Disclosure Safari Iphone Os
NVD
CVSS 3.0
6.5
EPSS
0.4%
CVE-2017-2486 MEDIUM This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Apple Information Disclosure Safari Iphone Os
NVD
CVSS 3.0
6.5
EPSS
0.4%
CVE-2016-8780 MEDIUM This Month

Huawei CloudEngine 6800 V100R006C00, CloudEngine 7800 V100R006C00, CloudEngine 8800 V100R006C00, and CloudEngine 12800 V100R006C00 allow remote attackers with specific permission to store massive. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Huawei Cloudengine 6800 Firmware Cloudengine 7800 Firmware Cloudengine 8800 Firmware +1
NVD
CVSS 3.0
6.5
EPSS
0.2%
CVE-2016-8275 MEDIUM This Month

Huawei AnyOffice V200R006C00 could allow an authenticated, remote attacker to cause the software to deny services by uploading an XML bomb. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Huawei Information Disclosure Anyoffice
NVD
CVSS 3.0
6.5
EPSS
0.2%
CVE-2016-8802 MEDIUM This Month

The security policy processing module in Huawei Secospace USG6300 with software V500R001C20SPC100, V500R001C20SPC101, V500R001C20SPC200; Secospace USG6500 with software V500R001C20SPC100,. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Buffer Overflow Huawei Secospace Usg6300 Firmware Secospace Usg6500 Firmware Secospace Usg6600 Firmware
NVD
CVSS 3.0
6.5
EPSS
0.2%
CVE-2016-6177 MEDIUM This Month

The Huawei OceanStor 5800 V300R003C00 has an integer overflow vulnerability. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Integer Overflow Huawei Buffer Overflow Oceanstor 5800 V3 Firmware
NVD
CVSS 3.0
6.5
EPSS
0.2%
CVE-2016-8781 MEDIUM This Month

Huawei Secospace USG6300 with software V500R001C20 and V500R001C20SPC200PWE, Secospace USG6500 with software V500R001C20, Secospace USG6600 with software V500R001C20 and V500R001C20SPC200PWE allow. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Huawei Information Disclosure Secospace Usg6300 Firmware Secospace Usg6500 Firmware Secospace Usg6600 Firmware
NVD
CVSS 3.0
6.5
EPSS
0.2%
CVE-2015-8670 MEDIUM This Month

Huawei LogCenter V100R001C10 could allow an authenticated attacker to add abnormal device information to the log collection module, causing denial of service. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Huawei Logcenter
NVD
CVSS 3.0
6.5
EPSS
0.2%
CVE-2014-9691 MEDIUM This Month

Huawei Tecal RH1288 V2 V100R002C00SPC107 and earlier versions, Tecal RH2265 V2 V100R002C00, Tecal RH2285 V2 V100R002C00SPC115 and earlier versions, Tecal RH2265 V2 V100R002C00, Tecal RH2285H V2. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Huawei Information Disclosure Tecal Rh1288 V2 Firmware Tecal Rh2265 V2 Firmware Tecal Rh2285 V2 Firmware +29
NVD
CVSS 3.0
6.5
EPSS
0.1%
CVE-2016-8779 MEDIUM This Month

Huawei FusionAccess with software V100R005C10 and V100R005C20 could allow remote attackers with specific permission to inject a Lightweight Directory Access Protocol (LDAP) operation command into a. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Huawei Information Disclosure Fusionaccess
NVD
CVSS 3.0
6.5
EPSS
0.1%
CVE-2017-2418 MEDIUM This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 6.5), this vulnerability is low attack complexity. No vendor patch available.

Apple Information Disclosure Mac Os X
NVD
CVSS 3.0
6.5
EPSS
0.1%
CVE-2016-8764 MEDIUM This Month

The TrustZone driver in Huawei P9 phones with software Versions earlier than EVA-AL10C00B352 and P9 Lite with software VNS-L21C185B130 and earlier versions and P8 Lite with software ALE-L02C636B150. Rated medium severity (CVSS 6.4). No vendor patch available.

Huawei Information Disclosure P9 Firmware P9 Lite Firmware P8 Lite Firmware
NVD
CVSS 3.0
6.4
EPSS
0.0%
CVE-2017-2475 MEDIUM This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Apple Safari Iphone Os Tvos
NVD
CVSS 3.0
6.1
EPSS
0.6%
CVE-2017-2393 MEDIUM This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Apple Iphone Os
NVD
CVSS 3.0
6.1
EPSS
0.3%
CVE-2016-8789 MEDIUM This Month

Huawei eSpace Integrated Access Device (IAD) with software V300R001C03, V300R001C04, V300R001C06, V300R001C20, and V300R001C07 allows an attacker to trick a user into clicking a URL containing. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Huawei Espace Integrated Access Device Firmware
NVD
CVSS 3.0
6.1
EPSS
0.1%
CVE-2017-2448 MEDIUM This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Apple Information Disclosure Iphone Os Mac Os X Tvos +1
NVD
CVSS 3.0
5.9
EPSS
0.7%
CVE-2016-8795 MEDIUM This Month

Huawei CloudEngine 12800 with software V100R002C00, V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00; CloudEngine 5800 with software V100R002C00, V100R003C00, V100R003C10, V100R005C00,. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Integer Overflow Huawei Buffer Overflow Cloudengine 5800 Firmware Cloudengine 6800 Firmware +4
NVD
CVSS 3.0
5.9
EPSS
0.2%
Prev Page 3 of 4 Next

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy