Huawei Secospace Usg6500 Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Huawei Secospace Usg6500 Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (67)
CVE-2016-4576 — CVSS 9.8 (critical): Buffer overflow in the Application Specific Packet Filtering (ASPF) functionality in the Huawei IPS Module, NGFW Module, NIP6300, NIP6600…
CVE-2016-4577 — CVSS 7.5 (high): Buffer overflow in the Smart DNS functionality in the Huawei NGFW Module and Secospace USG6300, USG6500, USG6600, and USG9500 firewalls…
CVE-2021-22320 — CVSS 7.5 (high): There is a denial of service vulnerability in Huawei products. A module cannot deal with specific messages correctly. Attackers can exploit…
CVE-2020-9213 — CVSS 7.5 (high): There is a denial of service vulnerability in some huawei products. In specific scenarios, due to the improper handling of the packets, an…
CVE-2020-1847 — CVSS 7.5 (high): There is a denial of service vulnerability in some Huawei products. There is no protection against the attack scenario of specific…
CVE-2019-5304 — CVSS 7.5 (high): Some Huawei products have a buffer error vulnerability. An unauthenticated, remote attacker could send specific MPLS Echo Request messages…
CVE-2019-19417 — CVSS 7.5 (high): The SIP module of some Huawei products have a denial of service (DoS) vulnerability. A remote attacker could exploit these three…
CVE-2019-19416 — CVSS 7.5 (high): The SIP module of some Huawei products have a denial of service (DoS) vulnerability. A remote attacker could exploit these three…
CVE-2019-19415 — CVSS 7.5 (high): The SIP module of some Huawei products have a denial of service (DoS) vulnerability. A remote attacker could exploit these three…
CVE-2020-9127 — CVSS 6.7 (medium): Some Huawei products have a command injection vulnerability. Due to insufficient input validation, an attacker with high privilege may…
CVE-2021-22411 — CVSS 6.5 (medium): There is an out-of-bounds write vulnerability in some Huawei products. The code of a module have a bad judgment logic. Attackers can…
CVE-2016-8781 — CVSS 6.5 (medium): Huawei Secospace USG6300 with software V500R001C20 and V500R001C20SPC200PWE, Secospace USG6500 with software V500R001C20, Secospace USG6600…
CVE-2016-8802 — CVSS 6.5 (medium): The security policy processing module in Huawei Secospace USG6300 with software V500R001C20SPC100, V500R001C20SPC101, V500R001C20SPC200…
CVE-2020-9101 — CVSS 6.5 (medium): There is an out-of-bounds write vulnerability in some products. An unauthenticated attacker crafts malformed packets with specific…
CVE-2021-22312 — CVSS 6.5 (medium): There is a memory leak vulnerability in some Huawei products. An authenticated remote attacker may exploit this vulnerability by sending…
CVE-2021-22356 — CVSS 5.9 (medium): There is a weak secure algorithm vulnerability in Huawei products. A weak secure algorithm is used in a module. Attackers can exploit this…
CVE-2019-5257 — CVSS 5.5 (medium): Certain Huawei products (AP2000;IPS Module;NGFW Module;NIP6300;NIP6600;NIP6800;S5700;SVN5600;SVN5800;SVN5800-C;SeMG9811;Secospace) have a…
CVE-2017-15350 — CVSS 5.3 (medium): The Common Open Policy Service Protocol (COPS) module in Huawei DP300 V500R002C00, IPS Module V100R001C10, V100R001C20, V100R001C30…
CVE-2017-15336 — CVSS 5.3 (medium): The SIP backup feature in Huawei DP300 V500R002C00, IPS Module V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20…
CVE-2017-15335 — CVSS 5.3 (medium): The SIP backup feature in Huawei DP300 V500R002C00, IPS Module V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20…
CVE-2017-15334 — CVSS 5.3 (medium): The SIP backup feature in Huawei DP300 V500R002C00, IPS Module V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20…
CVE-2021-22321 — CVSS 5.3 (medium): There is a use-after-free vulnerability in a Huawei product. A module cannot deal with specific operations in special scenarios. Attackers…
CVE-2021-22341 — CVSS 4.9 (medium): There is a memory leak vulnerability in Huawei products. A resource management weakness exists in a module. Attackers with high privilege…
CVE-2021-22310 — CVSS 4.4 (medium): There is an information leakage vulnerability in some huawei products. Due to the properly storage of specific information in the log file…
CVE-2017-15338 — CVSS 3.7 (low): The SIP module in Huawei DP300 V500R002C00, IPS Module V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30…
CVE-2017-15339 — CVSS 3.7 (low): The SIP module in Huawei DP300 V500R002C00, IPS Module V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30…
CVE-2020-1818 — CVSS 3.7 (low): There are multiple out of bounds (OOB) read vulnerabilities in the implementation of the Common Open Policy Service (COPS) protocol of some…
CVE-2020-1819 — CVSS 3.7 (low): There are multiple out of bounds (OOB) read vulnerabilities in the implementation of the Common Open Policy Service (COPS) protocol of some…
CVE-2020-1820 — CVSS 3.7 (low): There are multiple out of bounds (OOB) read vulnerabilities in the implementation of the Common Open Policy Service (COPS) protocol of some…
CVE-2020-1821 — CVSS 3.7 (low): There are multiple out of bounds (OOB) read vulnerabilities in the implementation of the Common Open Policy Service (COPS) protocol of some…
CVE-2020-1822 — CVSS 3.7 (low): There are multiple out of bounds (OOB) read vulnerabilities in the implementation of the Common Open Policy Service (COPS) protocol of some…
CVE-2020-1823 — CVSS 3.7 (low): There are multiple out of bounds (OOB) read vulnerabilities in the implementation of the Common Open Policy Service (COPS) protocol of some…
CVE-2020-1824 — CVSS 3.7 (low): There are multiple out of bounds (OOB) read vulnerabilities in the implementation of the Common Open Policy Service (COPS) protocol of some…
CVE-2017-15337 — CVSS 3.7 (low): The SIP module in Huawei DP300 V500R002C00, IPS Module V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30…