Huawei Usg9500 vulnerabilities

13 known vulnerabilities affecting huawei/usg9500.

Total CVEs
13
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH10MEDIUM3

Vulnerabilities

Page 1 of 1
CVE-2020-9101MEDIUMCVSS 6.5vV500R001C30vV500R001C60+2 more2020-07-18
CVE-2020-9101 [MEDIUM] CWE-787 CVE-2020-9101: There is an out-of-bounds write vulnerability in some products. An unauthenticated attacker crafts m There is an out-of-bounds write vulnerability in some products. An unauthenticated attacker crafts malformed packets with specific parameter and sends the packets to the affected products. Due to insufficient validation of packets, which may be exploited to cause the process reboot. Affected product versions include: IPS Module versions V500R005C00, V
cvelistv5nvd
CVE-2019-19416HIGHCVSS 7.5vV300R001C01vV300R001C20+4 more2020-07-08
CVE-2019-19416 [HIGH] CWE-20 CVE-2019-19416: The SIP module of some Huawei products have a denial of service (DoS) vulnerability. A remote attack The SIP module of some Huawei products have a denial of service (DoS) vulnerability. A remote attacker could exploit these three vulnerabilities by sending the specially crafted messages to the affected device. Due to the insufficient verification of the packets, successful exploit could allow the attacker to cause buffer overflow and dead loop, leadin
cvelistv5nvd
CVE-2019-19417HIGHCVSS 7.5vV300R001C01vV300R001C20+4 more2020-07-08
CVE-2019-19417 [HIGH] CWE-20 CVE-2019-19417: The SIP module of some Huawei products have a denial of service (DoS) vulnerability. A remote attack The SIP module of some Huawei products have a denial of service (DoS) vulnerability. A remote attacker could exploit these three vulnerabilities by sending the specially crafted messages to the affected device. Due to the insufficient verification of the packets, successful exploit could allow the attacker to cause buffer overflow and dead loop, leadin
cvelistv5nvd
CVE-2019-19415HIGHCVSS 7.5vV300R001C01vV300R001C20+4 more2020-07-08
CVE-2019-19415 [HIGH] CWE-20 CVE-2019-19415: The SIP module of some Huawei products have a denial of service (DoS) vulnerability. A remote attack The SIP module of some Huawei products have a denial of service (DoS) vulnerability. A remote attacker could exploit these three vulnerabilities by sending the specially crafted messages to the affected device. Due to the insufficient verification of the packets, successful exploit could allow the attacker to cause buffer overflow and dead loop, leadin
cvelistv5nvd
CVE-2020-1829HIGHCVSS 7.5vV500R001C30SPC200vV500R001C30SPC600+1 more2020-02-17
CVE-2020-1829 [HIGH] CWE-415 CVE-2020-1829: Huawei NIP6800 versions V500R001C30 and V500R001C60SPC500; and Secospace USG6600 and USG9500 version Huawei NIP6800 versions V500R001C30 and V500R001C60SPC500; and Secospace USG6600 and USG9500 versions V500R001C30SPC200, V500R001C30SPC600, and V500R001C60SPC500 have a vulnerability that the IPSec module handles a message improperly. Attackers can send specific message to cause double free memory. This may compromise normal service.
cvelistv5nvd
CVE-2020-1858HIGHCVSS 7.5vV500R001C30SPC600vV500R001C60SPC500+1 more2020-02-17
CVE-2020-1858 [HIGH] CVE-2020-1858: Huawei products NIP6800 versions V500R001C30, V500R001C60SPC500, and V500R005C00SPC100; Secospace US Huawei products NIP6800 versions V500R001C30, V500R001C60SPC500, and V500R005C00SPC100; Secospace USG6600 versions V500R001C30SPC600, V500R001C60SPC500, and V500R005C00SPC100; and USG9500 versions V500R001C30SPC600, V500R001C60SPC500, and V500R005C00SPC100 have a denial of service vulnerability. Attackers need to perform a series of operations in a special scen
cvelistv5nvd
CVE-2020-1828HIGHCVSS 7.5vV500R001C30SPC200vV500R001C30SPC600+2 more2020-02-17
CVE-2020-1828 [HIGH] CWE-20 CVE-2020-1828: Huawei NIP6800 versions V500R001C30, V500R001C60SPC500, and V500R005C00; and Secospace USG6600 and U Huawei NIP6800 versions V500R001C30, V500R001C60SPC500, and V500R005C00; and Secospace USG6600 and USG9500 versions V500R001C30SPC200, V500R001C30SPC600, V500R001C60SPC500, and V500R005C00 have an input validation vulnerability where the IPSec module does not validate a field in a specific message. Attackers can send specific message to cause out-of-boun
cvelistv5nvd
CVE-2020-1857MEDIUMCVSS 5.5vV500R001C30SPC200vV500R001C30SPC600+2 more2020-02-17
CVE-2020-1857 [MEDIUM] CVE-2020-1857: Huawei NIP6800 versions V500R001C30, V500R001C60SPC500, and V500R005C00SPC100; and Secospace USG6600 Huawei NIP6800 versions V500R001C30, V500R001C60SPC500, and V500R005C00SPC100; and Secospace USG6600 and USG9500 versions V500R001C30SPC200, V500R001C30SPC600, V500R001C60SPC500, and V500R005C00SPC100 have an information leakage vulnerability. Due to improper processing of some data, a local authenticated attacker can exploit this vulnerability through a seri
cvelistv5nvd
CVE-2019-5275HIGHCVSS 7.5vV500R001C30vV500R001C602019-12-26
CVE-2019-5275 [HIGH] CWE-787 CVE-2019-5275: USG9500 with versions of V500R001C30;V500R001C60 have a denial of service vulnerability. Due to a fl USG9500 with versions of V500R001C30;V500R001C60 have a denial of service vulnerability. Due to a flaw in the X.509 implementation in the affected products which can result in a heap buffer overflow when decoding a certificate, an attacker may exploit the vulnerability by a malicious certificate to perform a denial of service attack on the affected prod
cvelistv5nvd
CVE-2019-5273HIGHCVSS 7.5vV500R001C30vV500R001C602019-12-26
CVE-2019-5273 [HIGH] CWE-120 CVE-2019-5273: USG9500 with versions of V500R001C30;V500R001C60 have a denial of service vulnerability. Due to a fl USG9500 with versions of V500R001C30;V500R001C60 have a denial of service vulnerability. Due to a flaw in the X.509 implementation in the affected products which can result in a large heap buffer overrun error, an attacker may exploit the vulnerability by a malicious certificate, resulting a denial of service on the affected products.
cvelistv5nvd
CVE-2019-5274HIGHCVSS 7.5vV500R001C30vV500R001C602019-12-26
CVE-2019-5274 [HIGH] CWE-835 CVE-2019-5274: USG9500 with versions of V500R001C30;V500R001C60 have a denial of service vulnerability. Due to a fl USG9500 with versions of V500R001C30;V500R001C60 have a denial of service vulnerability. Due to a flaw in the X.509 implementation in the affected products which can result in an infinite loop, an attacker may exploit the vulnerability via a malicious certificate to perform a denial of service attack on the affected products.
cvelistv5nvd
CVE-2019-5272MEDIUMCVSS 4.9vV500R001C30vV500R001C602019-12-26
CVE-2019-5272 [MEDIUM] CWE-354 CVE-2019-5272: USG9500 with versions of V500R001C30;V500R001C60 have a missing integrity checking vulnerability. Th USG9500 with versions of V500R001C30;V500R001C60 have a missing integrity checking vulnerability. The software of the affected products does not check the integrity which may allow an attacker with high privilege to make malicious modifications without detection.
cvelistv5nvd
CVE-2018-7994HIGHCVSS 7.5vv500r001c502018-07-31
CVE-2018-7994 [HIGH] CWE-772 CVE-2018-7994: Some Huawei products IPS Module V500R001C50; NGFW Module V500R001C50; V500R002C10; NIP6300 V500R001C Some Huawei products IPS Module V500R001C50; NGFW Module V500R001C50; V500R002C10; NIP6300 V500R001C50; NIP6600 V500R001C50; NIP6800 V500R001C50; Secospace USG6600 V500R001C50; USG9500 V500R001C50 have a memory leak vulnerability. The software does not release allocated memory properly when processing Protal questionnaire. A remote attacker could send a
nvd
Huawei Usg9500 vulnerabilities | cvebase