Huawei Usg9500 Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Huawei Usg9500 Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (81)
CVE-2016-4576 — CVSS 9.8 (critical): Buffer overflow in the Application Specific Packet Filtering (ASPF) functionality in the Huawei IPS Module, NGFW Module, NIP6300, NIP6600…
CVE-2014-9136 — CVSS 8.8 (high): Huawei FusionManager with software V100R002C03 and V100R003C00 could allow an unauthenticated, remote attacker to conduct a CSRF attack…
CVE-2014-9137 — CVSS 8.8 (high): Huawei USG9500 with software V200R001C01SPC800 and earlier versions, V300R001C00; USG2100 with software V300R001C00SPC900 and earlier…
CVE-2020-1871 — CVSS 8.2 (high): USG9500 with software of V500R001C30SPC100; V500R001C30SPC200; V500R001C30SPC600; V500R001C60SPC500; V500R005C00SPC100; V500R005C00SPC200…
CVE-2016-4577 — CVSS 7.5 (high): Buffer overflow in the Smart DNS functionality in the Huawei NGFW Module and Secospace USG6300, USG6500, USG6600, and USG9500 firewalls…
CVE-2017-8167 — CVSS 7.5 (high): Huawei firewall products USG9500 V500R001C50 has a DoS vulnerability.A remote attacker who controls the peer device could exploit the…
CVE-2019-19415 — CVSS 7.5 (high): The SIP module of some Huawei products have a denial of service (DoS) vulnerability. A remote attacker could exploit these three…
CVE-2019-19416 — CVSS 7.5 (high): The SIP module of some Huawei products have a denial of service (DoS) vulnerability. A remote attacker could exploit these three…
CVE-2019-19417 — CVSS 7.5 (high): The SIP module of some Huawei products have a denial of service (DoS) vulnerability. A remote attacker could exploit these three…
CVE-2019-5273 — CVSS 7.5 (high): USG9500 with versions of V500R001C30;V500R001C60 have a denial of service vulnerability. Due to a flaw in the X.509 implementation in the…
CVE-2019-5274 — CVSS 7.5 (high): USG9500 with versions of V500R001C30;V500R001C60 have a denial of service vulnerability. Due to a flaw in the X.509 implementation in the…
CVE-2019-5275 — CVSS 7.5 (high): USG9500 with versions of V500R001C30;V500R001C60 have a denial of service vulnerability. Due to a flaw in the X.509 implementation in the…
CVE-2020-1815 — CVSS 7.5 (high): Huawei NIP6800 versions V500R001C30, V500R001C60SPC500, and V500R005C00; Secospace USG6600 and USG9500 versions V500R001C30SPC200…
CVE-2020-1816 — CVSS 7.5 (high): Huawei NIP6800 versions V500R001C30, V500R001C60SPC500, and V500R005C00; Secospace USG6600 and USG9500 versions V500R001C30SPC200…
CVE-2020-1827 — CVSS 7.5 (high): Huawei NIP6800 versions V500R001C30, V500R001C60SPC500, and V500R005C00SPC100; and Secospace USG6600 and USG9500 versions…
CVE-2020-1828 — CVSS 7.5 (high): Huawei NIP6800 versions V500R001C30, V500R001C60SPC500, and V500R005C00; and Secospace USG6600 and USG9500 versions V500R001C30SPC200…
CVE-2020-1829 — CVSS 7.5 (high): Huawei NIP6800 versions V500R001C30 and V500R001C60SPC500; and Secospace USG6600 and USG9500 versions V500R001C30SPC200, V500R001C30SPC600…
CVE-2020-1847 — CVSS 7.5 (high): There is a denial of service vulnerability in some Huawei products. There is no protection against the attack scenario of specific…
CVE-2020-1860 — CVSS 7.5 (high): NIP6800;Secospace USG6600;USG9500 products with versions of V500R001C30; V500R001C60SPC500; V500R005C00SPC100 have an access control bypass…
CVE-2020-1873 — CVSS 7.5 (high): NIP6800;Secospace USG6600;USG9500 products with versions of V500R001C30; V500R001C60SPC500; V500R005C00SPC100 have an out-of-bounds read…
CVE-2020-1876 — CVSS 7.5 (high): NIP6800;Secospace USG6600;USG9500 with versions of V500R001C30; V500R001C60SPC500; V500R005C00SPC100 have an out-of-bounds write…
CVE-2020-1881 — CVSS 7.5 (high): NIP6800;Secospace USG6600;USG9500 products with versions of V500R001C30; V500R001C60SPC500; V500R005C00SPC100 have have a resource…
CVE-2020-9213 — CVSS 7.5 (high): There is a denial of service vulnerability in some huawei products. In specific scenarios, due to the improper handling of the packets, an…
CVE-2021-22309 — CVSS 7.5 (high): There is insecure algorithm vulnerability in Huawei products. A module uses less random input in a secure mechanism. Attackers can exploit…
CVE-2021-37129 — CVSS 7.5 (high): There is an out of bounds write vulnerability in some Huawei products. The vulnerability is caused by a function of a module that does not…
CVE-2020-9127 — CVSS 6.7 (medium): Some Huawei products have a command injection vulnerability. Due to insufficient input validation, an attacker with high privilege may…
CVE-2021-22312 — CVSS 6.5 (medium): There is a memory leak vulnerability in some Huawei products. An authenticated remote attacker may exploit this vulnerability by sending…
CVE-2021-22411 — CVSS 6.5 (medium): There is an out-of-bounds write vulnerability in some Huawei products. The code of a module have a bad judgment logic. Attackers can…
CVE-2020-1866 — CVSS 6.5 (medium): There is an out-of-bounds read vulnerability in several products. The software reads data past the end of the intended buffer when parsing…
CVE-2020-9101 — CVSS 6.5 (medium): There is an out-of-bounds write vulnerability in some products. An unauthenticated attacker crafts malformed packets with specific…
CVE-2020-9201 — CVSS 6.5 (medium): There is an out-of-bounds read vulnerability in some versions of NIP6800, Secospace USG6600 and USG9500. The software reads data past the…
CVE-2020-9212 — CVSS 6.5 (medium): There is a vulnerability in some version of USG9500 that the device improperly handles the information when a user logs in to device. The…
CVE-2021-22356 — CVSS 5.9 (medium): There is a weak secure algorithm vulnerability in Huawei products. A weak secure algorithm is used in a module. Attackers can exploit this…
CVE-2017-15335 — CVSS 5.3 (medium): The SIP backup feature in Huawei DP300 V500R002C00, IPS Module V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20…
CVE-2017-15336 — CVSS 5.3 (medium): The SIP backup feature in Huawei DP300 V500R002C00, IPS Module V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20…
CVE-2017-15350 — CVSS 5.3 (medium): The Common Open Policy Service Protocol (COPS) module in Huawei DP300 V500R002C00, IPS Module V100R001C10, V100R001C20, V100R001C30…
CVE-2017-15334 — CVSS 5.3 (medium): The SIP backup feature in Huawei DP300 V500R002C00, IPS Module V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20…
CVE-2020-1830 — CVSS 5.3 (medium): Huawei NIP6800 versions V500R001C30, V500R001C60SPC500, and V500R005C00; Secospace USG6600 and USG9500 versions V500R001C30SPC200…
CVE-2021-22321 — CVSS 5.3 (medium): There is a use-after-free vulnerability in a Huawei product. A module cannot deal with specific operations in special scenarios. Attackers…
CVE-2021-22360 — CVSS 4.9 (medium): There is a resource management error vulnerability in the verisions V500R001C60SPC500, V500R005C00SPC100, V500R005C00SPC200 of USG9500. An…
CVE-2020-1883 — CVSS 4.9 (medium): Huawei products NIP6800;Secospace USG6600;USG9500 have a memory leak vulnerability. An attacker with high privileges exploits this…
CVE-2019-5272 — CVSS 4.9 (medium): USG9500 with versions of V500R001C30;V500R001C60 have a missing integrity checking vulnerability. The software of the affected products…
CVE-2021-22342 — CVSS 4.9 (medium): There is an information leak vulnerability in Huawei products. A module does not deal with specific input sufficiently. High privilege…
CVE-2021-22310 — CVSS 4.4 (medium): There is an information leakage vulnerability in some huawei products. Due to the properly storage of specific information in the log file…
CVE-2020-1877 — CVSS 4.4 (medium): NIP6800;Secospace USG6600;USG9500 with versions of V500R001C30; V500R001C60SPC500; V500R005C00SPC100 have an invalid pointer access…
CVE-2017-15337 — CVSS 3.7 (low): The SIP module in Huawei DP300 V500R002C00, IPS Module V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30…
CVE-2017-15339 — CVSS 3.7 (low): The SIP module in Huawei DP300 V500R002C00, IPS Module V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30…
CVE-2017-15338 — CVSS 3.7 (low): The SIP module in Huawei DP300 V500R002C00, IPS Module V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30…
CVE-2019-19411 — CVSS 3.7 (low): USG9500 with versions of V500R001C30SPC100, V500R001C30SPC200, V500R001C30SPC600, V500R001C60SPC500, V500R005C00SPC100, V500R005C00SPC200…