|
252461
|
6.5 |
MEDIUM
Network
|
huawei
|
uma
|
The UMA product with software V200R001 and V300R001 has an information leak vulnerability. An attacker could exploit them to obtain some sensitive information, causing information leak.
|
CWE-200
Information Exposure
|
CVE-2017-8130
|
2024-11-21 12:33 |
2017-11-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252462
|
9.8 |
CRITICAL
Network
|
huawei
|
uma
|
The UMA product with software V200R001 and V300R001 has a privilege elevation vulnerability due to insufficient validation or improper processing of parameters. An attacker could craft specific packe…
|
CWE-20
Improper Input Validation
|
CVE-2017-8129
|
2024-11-21 12:33 |
2017-11-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252463
|
9.8 |
CRITICAL
Network
|
huawei
|
uma
|
The UMA product with software V200R001 and V300R001 has a privilege elevation vulnerability due to insufficient validation or improper processing of parameters. An attacker could craft specific packe…
|
CWE-20
Improper Input Validation
|
CVE-2017-8128
|
2024-11-21 12:33 |
2017-11-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252464
|
6.1 |
MEDIUM
Network
|
huawei
|
uma
|
The UMA product with software V200R001 has a cross-site scripting (XSS) vulnerability due to insufficient input validation. An attacker could craft malicious links or scripts to launch XSS attacks.
|
CWE-79
Cross-site Scripting
|
CVE-2017-8127
|
2024-11-21 12:33 |
2017-11-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252465
|
9.8 |
CRITICAL
Network
|
huawei
|
uma
|
The UMA product with software V200R001 has a privilege elevation vulnerability due to insufficient validation or improper processing of parameters. An attacker could craft specific packets to exploit…
|
CWE-20
Improper Input Validation
|
CVE-2017-8126
|
2024-11-21 12:33 |
2017-11-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252466
|
6.1 |
MEDIUM
Network
|
huawei
|
uma
|
The UMA product with software V200R001 and V300R001 has a cross-site scripting (XSS) vulnerability due to insufficient input validation. An attacker could craft malicious links or scripts to launch X…
|
CWE-79
Cross-site Scripting
|
CVE-2017-8125
|
2024-11-21 12:33 |
2017-11-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252467
|
9.8 |
CRITICAL
Network
|
huawei
|
uma
|
The UMA product with software V200R001 has a privilege elevation vulnerability due to insufficient validation or improper processing of parameters. An attacker could craft specific packets to exploit…
|
CWE-20
Improper Input Validation
|
CVE-2017-8124
|
2024-11-21 12:33 |
2017-11-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252468
|
9.8 |
CRITICAL
Network
|
huawei
|
uma
|
The UMA product with software V200R001 has a privilege elevation vulnerability due to insufficient validation or improper processing of parameters. An attacker could craft specific packets to exploit…
|
CWE-20
Improper Input Validation
|
CVE-2017-8123
|
2024-11-21 12:33 |
2017-11-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252469
|
9.8 |
CRITICAL
Network
|
huawei
|
uma
|
The UMA product with software V200R001 has a privilege elevation vulnerability due to insufficient validation or improper processing of parameters. An attacker could craft specific packets to exploit…
|
CWE-20
Improper Input Validation
|
CVE-2017-8122
|
2024-11-21 12:33 |
2017-11-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252470
|
5.3 |
MEDIUM
Network
|
huawei
|
uma
|
The UMA product with software V200R001 and V300R001 has an information leak vulnerability. An attacker could exploit them to obtain some sensitive information, causing information leak.
|
CWE-200
Information Exposure
|
CVE-2017-8121
|
2024-11-21 12:33 |
2017-11-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
