Huawei S12700 Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Huawei S12700 Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (30)
CVE-2016-4087 — CVSS 8.1 (high): Huawei S12700 switches with software before V200R008C00SPC500 and S5700 switches with software before V200R005SPH010, when the debug switch…
CVE-2019-19397 — CVSS 7.5 (high): There is a weak algorithm vulnerability in some Huawei products. The affected products use weak algorithms by default. Attackers may…
CVE-2015-3913 — CVSS 7.5 (high): The IP stack in multiple Huawei Campus series switch models allows remote attackers to cause a denial of service (reboot) via a crafted…
CVE-2021-37129 — CVSS 7.5 (high): There is an out of bounds write vulnerability in some Huawei products. The vulnerability is caused by a function of a module that does not…
CVE-2016-6518 — CVSS 7.5 (high): Memory leak in Huawei S9300, S5300, S5700, S6700, S7700, S9700, and S12700 devices allows remote attackers to cause a denial of service…
CVE-2016-8773 — CVSS 7.5 (high): Huawei S5300 with software V200R003C00, V200R007C00, V200R008C00, V200R009C00; S5700 with software V200R001C00, V200R002C00, V200R003C00…
CVE-2021-22357 — CVSS 7.5 (high): There is a denial of service vulnerability in Huawei products. A module cannot deal with specific messages due to validating inputs…
CVE-2016-8797 — CVSS 7.5 (high): Huawei AR3200 with software V200R007C00, V200R005C32, V200R005C20; S12700 with software V200R008C00, V200R007C00; S5300 with software…
CVE-2019-5285 — CVSS 7.5 (high): Some Huawei S series switches have a DoS vulnerability. An unauthenticated remote attacker can send crafted packets to the affected device…
CVE-2021-22377 — CVSS 7.2 (high): There is a command injection vulnerability in S12700 V200R019C00SPC500, S2700 V200R019C00SPC500, S5700 V200R019C00SPC500, S6700…
CVE-2020-1866 — CVSS 6.5 (medium): There is an out-of-bounds read vulnerability in several products. The software reads data past the end of the intended buffer when parsing…
CVE-2021-22321 — CVSS 5.3 (medium): There is a use-after-free vulnerability in a Huawei product. A module cannot deal with specific operations in special scenarios. Attackers…
CVE-2015-8085 — CVSS 4.9 (medium): Huawei AR routers with software before V200R007C00SPC100; Quidway S9300 routers with software before V200R009C00; S12700 routers with…
CVE-2021-22329 — CVSS 4.9 (medium): There has a license management vulnerability in some Huawei products. An attacker with high privilege needs to perform specific operations…
CVE-2015-8086 — CVSS 4.9 (medium): Huawei AR routers with software before V200R007C00SPC100; Quidway S9300 routers with software before V200R009C00; S12700 routers with…
CVE-2017-15346 — CVSS 4.7 (medium): XML parser in Huawei S12700 V200R005C00,S1700 V200R009C00, V200R010C00,S3700 V100R006C03, V100R006C05,S5700 V200R001C00, V200R002C00…
CVE-2017-15333 — CVSS 4.7 (medium): XML parser in Huawei S12700 V200R005C00,S1700 V200R009C00, V200R010C00,S3700 V100R006C03, V100R006C05,S5700 V200R001C00, V200R002C00…
CVE-2015-2808 — CVSS 3.7 (low): The RC4 algorithm, as used in the TLS protocol and SSL protocol, does not properly combine state data with key data during the…