CVE-2020-9090
- EPSS 0.03%
- Veröffentlicht 12.10.2020 14:15:14
- Zuletzt bearbeitet 21.11.2024 05:40:00
FusionAccess version 6.5.1 has an improper authorization vulnerability. A command is authorized with incorrect privilege. Attackers with other privilege can execute the command to exploit this vulnerability. This may compromise normal service of the ...
CVE-2020-1825
- EPSS 0.17%
- Veröffentlicht 15.06.2020 15:15:09
- Zuletzt bearbeitet 21.11.2024 05:11:26
FusionAccess with versions earlier than 6.5.1.SPC002 have a Denial of Service (DoS) vulnerability. Due to insufficient verification on specific input, attackers can exploit this vulnerability by sending constructed messages to the affected device thr...
CVE-2016-8779
- EPSS 0.1%
- Veröffentlicht 02.04.2017 20:59:01
- Zuletzt bearbeitet 20.04.2025 01:37:25
Huawei FusionAccess with software V100R005C10 and V100R005C20 could allow remote attackers with specific permission to inject a Lightweight Directory Access Protocol (LDAP) operation command into a specific input variable to obtain sensitive informat...
CVE-2015-7844
- EPSS 0.17%
- Veröffentlicht 02.04.2017 20:59:00
- Zuletzt bearbeitet 20.04.2025 01:37:25
Huawei FusionAccess with software V100R005C10,V100R005C20 could allow attackers to craft and send a malformed HDP protocol packet to cause the virtual cloud desktop to be displaying an error and not usable.
CVE-2016-6839
- EPSS 0.11%
- Veröffentlicht 07.09.2016 19:28:16
- Zuletzt bearbeitet 12.04.2025 10:46:40
CRLF injection vulnerability in Huawei FusionAccess before V100R006C00 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors.