cbcvebase.

H3C Magic R100 Firmware vulnerabilities

28 known vulnerabilities affecting h3c/magic_r100_firmware.

Total CVEs
28
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL18HIGH1MEDIUM9

Vulnerabilities

Page 1 of 2
CVE-2022-34598P2CRITICALCVSS 9.8vv100r005vv200r0042022-07-06
CVE-2022-34598 [CRITICAL] CVE-2022-34598: The udpserver in H3C Magic R100 V200R004 and V100R005 has the 9034 port opened, allowing attackers t The udpserver in H3C Magic R100 V200R004 and V100R005 has the 9034 port opened, allowing attackers to execute arbitrary commands.
nvd
CVE-2022-30916P3CRITICALCVSS 9.8≤ v100r0052022-06-08
CVE-2022-30916 [CRITICAL] CWE-787 CVE-2022-30916: H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the Asp_Set H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the Asp_SetTelnetDebug parameter at /goform/aspForm.
nvd
CVE-2022-30914P3CRITICALCVSS 9.8≤ v100r0052022-06-08
CVE-2022-30914 [CRITICAL] CWE-787 CVE-2022-30914: H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the UpdateM H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the UpdateMacClone parameter at /goform/aspForm.
nvd
CVE-2022-30925P3CRITICALCVSS 9.8≤ v100r0052022-06-08
CVE-2022-30925 [CRITICAL] CWE-787 CVE-2022-30925: H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the AddMacL H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the AddMacList parameter at /goform/aspForm.
nvd
CVE-2022-30918P3CRITICALCVSS 9.8≤ v100r0052022-06-08
CVE-2022-30918 [CRITICAL] CWE-787 CVE-2022-30918: H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the Asp_Set H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the Asp_SetTelnet parameter at /goform/aspForm.
nvd
CVE-2022-30909P3CRITICALCVSS 9.8≤ v100r0052022-06-08
CVE-2022-30909 [CRITICAL] CWE-787 CVE-2022-30909: H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the CMD par H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the CMD parameter at /goform/aspForm.
nvd
CVE-2022-30924P3CRITICALCVSS 9.8≤ v100r0052022-06-08
CVE-2022-30924 [CRITICAL] CWE-787 CVE-2022-30924: H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the SetAPWi H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the SetAPWifiorLedInfoById parameter at /goform/aspForm.
nvd
CVE-2022-30913P3CRITICALCVSS 9.8≤ v100r0052022-06-08
CVE-2022-30913 [CRITICAL] CWE-787 CVE-2022-30913: H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the ipqos_s H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the ipqos_set_bandwidth parameter at /goform/aspForm.
nvd
CVE-2022-30926P3CRITICALCVSS 9.8≤ v100r0052022-06-08
CVE-2022-30926 [CRITICAL] CWE-787 CVE-2022-30926: H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the EditMac H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the EditMacList parameter at /goform/aspForm.
nvd
CVE-2022-30912P3CRITICALCVSS 9.8≤ v100r0052022-06-08
CVE-2022-30912 [CRITICAL] CWE-787 CVE-2022-30912: H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the UpdateW H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the UpdateWanParams parameter at /goform/aspForm.
nvd
CVE-2022-30919P3CRITICALCVSS 9.8≤ v100r0052022-06-08
CVE-2022-30919 [CRITICAL] CWE-787 CVE-2022-30919: H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the Edit_Ba H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the Edit_BasicSSID_5G parameter at /goform/aspForm.
nvd
CVE-2022-30921P3CRITICALCVSS 9.8≤ v100r0052022-06-08
CVE-2022-30921 [CRITICAL] CWE-787 CVE-2022-30921: H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the SetMobi H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the SetMobileAPInfoById parameter at /goform/aspForm.
nvd
CVE-2022-30920P3CRITICALCVSS 9.8≤ v100r0052022-06-08
CVE-2022-30920 [CRITICAL] CWE-787 CVE-2022-30920: H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the Edit_Ba H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the Edit_BasicSSID parameter at /goform/aspForm.
nvd
CVE-2022-30923P3CRITICALCVSS 9.8≤ v100r0052022-06-08
CVE-2022-30923 [CRITICAL] CWE-787 CVE-2022-30923: H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the Asp_Set H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the Asp_SetTimingtimeWifiAndLed parameter at /goform/aspForm.
nvd
CVE-2022-30922P3CRITICALCVSS 9.8≤ v100r0052022-06-08
CVE-2022-30922 [CRITICAL] CWE-787 CVE-2022-30922: H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the EditWla H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the EditWlanMacList parameter at /goform/aspForm.
nvd
CVE-2022-30910P3CRITICALCVSS 9.8≤ v100r0052022-06-08
CVE-2022-30910 [CRITICAL] CWE-787 CVE-2022-30910: H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the GO para H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the GO parameter at /goform/aspForm.
nvd
CVE-2022-30915P3CRITICALCVSS 9.8≤ v100r0052022-06-08
CVE-2022-30915 [CRITICAL] CWE-787 CVE-2022-30915: H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the UpdateS H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the UpdateSnat parameter at /goform/aspForm.
nvd
CVE-2022-30917P3CRITICALCVSS 9.8≤ v100r0052022-06-08
CVE-2022-30917 [CRITICAL] CWE-787 CVE-2022-30917: H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the AddWlan H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the AddWlanMacList parameter at /goform/aspForm.
nvd
CVE-2022-28940P3HIGHCVSS 7.5≤ v100r0052022-05-04
CVE-2022-28940 [HIGH] CVE-2022-28940: In H3C MagicR100 <=V100R005, the / Ajax / ajaxget interface can be accessed without authorization. I In H3C MagicR100 <=V100R005, the / Ajax / ajaxget interface can be accessed without authorization. It sends a large amount of data through ajaxmsg to carry out DOS attack.
nvd
CVE-2023-27810P4MEDIUMCVSS 4.9vv100r0052023-04-07
CVE-2023-27810 [MEDIUM] CWE-787 CVE-2023-27810: H3C Magic R100 R100V100R005.bin was discovered to contain a stack overflow via the ipqos_lanip_editl H3C Magic R100 R100V100R005.bin was discovered to contain a stack overflow via the ipqos_lanip_editlist interface at /goform/aspForm. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted payload.
nvd