Huawei AR3200 Firmware V200R005C20

CPE Details

Huawei AR3200 Firmware V200R005C20
v200r005c20
2019-09-19
15h07 +00:00
2019-09-19
15h07 +00:00
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:o:huawei:ar3200_firmware:v200r005c20:*:*:*:*:*:*:*

Informations

Vendor

huawei

Product

ar3200_firmware

Version

v200r005c20

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2019-5304 2020-01-03 13h33 +00:00 Some Huawei products have a buffer error vulnerability. An unauthenticated, remote attacker could send specific MPLS Echo Request messages to the target products. Due to insufficient input validation of some parameters in the messages, successful exploit may cause the device to reset.
7.5
High
CVE-2019-5259 2019-12-16 20h43 +00:00 There is an information leakage vulnerability on some Huawei products(AR120-S;AR1200;AR1200-S;AR150;AR150-S;AR160;AR200;AR200-S;AR2200;AR2200-S;AR3200;AR3600). An attacker with low permissions can view some high-privilege information by running specific commands.Successful exploit could cause an information disclosure condition.
6.5
Medium
CVE-2019-5291 2019-12-13 13h35 +00:00 Some Huawei products have an insufficient verification of data authenticity vulnerability. A remote, unauthenticated attacker has to intercept specific packets between two devices, modify the packets, and send the modified packets to the peer device. Due to insufficient verification of some fields in the packets, an attacker may exploit the vulnerability to cause the target device to be abnormal.
5.9
Medium
CVE-2019-5293 2019-11-13 15h19 +00:00 Some Huawei products have a memory leak vulnerability when handling some messages. A remote attacker with operation privilege could exploit the vulnerability by sending specific messages continuously. Successful exploit may cause some service to be abnormal.
6.5
Medium
CVE-2019-5294 2019-11-13 15h12 +00:00 There is an out of bound read vulnerability in some Huawei products. A remote, unauthenticated attacker may send a corrupt or crafted message to the affected products. Due to a buffer read overflow error when parsing the message, successful exploit may cause some service to be abnormal.
7.5
High
CVE-2016-8797 2017-04-02 18h00 +00:00 Huawei AR3200 with software V200R007C00, V200R005C32, V200R005C20; S12700 with software V200R008C00, V200R007C00; S5300 with software V200R008C00, V200R007C00, V200R006C00; S5700 with software V200R008C00, V200R007C00, V200R006C00; S6300 with software V200R008C00, V200R007C00; S6700 with software V200R008C00, V200R007C00; S7700 with software V200R008C00, V200R007C00, V200R006C00; S9300 with software V200R008C00, V200R007C00, V200R006C00; and S9700 with software V200R008C00, V200R007C00, V200R006C00 allow remote attackers to send abnormal Multiprotocol Label Switching (MPLS) packets to cause memory exhaustion.
7.5
High
CVE-2016-6206 2017-03-24 14h00 +00:00 Huawei AR3200 routers with software before V200R007C00SPC600 allow remote attackers to cause a denial of service or execute arbitrary code via a crafted packet.
9.8
Critical
CVE-2016-5368 2016-06-30 14h00 +00:00 Memory leak in Huawei AR3200 before V200R007C00SPC900 allows remote attackers to cause a denial of service (memory consumption) via a large number of crafted Multiprotocol Label Switching (MPLS) packets.
7.5
High
CVE-2016-3950 2016-04-18 12h00 +00:00 Huawei AR3200 routers with software before V200R006C10SPC300 allow remote authenticated users to cause a denial of service (restart) via crafted packets.
6.5
Medium