|
254251
|
6.1 |
MEDIUM
Network
|
huawei
|
uma
|
The UMA product with software V200R001 and V300R001 has a cross-site scripting (XSS) vulnerability due to insufficient input validation. An attacker could craft malicious links or scripts to launch X…
|
CWE-79
Cross-site Scripting
|
CVE-2017-8125
|
2024-11-21 12:33 |
2017-11-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254252
|
9.8 |
CRITICAL
Network
|
huawei
|
uma
|
The UMA product with software V200R001 has a privilege elevation vulnerability due to insufficient validation or improper processing of parameters. An attacker could craft specific packets to exploit…
|
CWE-20
Improper Input Validation
|
CVE-2017-8124
|
2024-11-21 12:33 |
2017-11-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254253
|
9.8 |
CRITICAL
Network
|
huawei
|
uma
|
The UMA product with software V200R001 has a privilege elevation vulnerability due to insufficient validation or improper processing of parameters. An attacker could craft specific packets to exploit…
|
CWE-20
Improper Input Validation
|
CVE-2017-8123
|
2024-11-21 12:33 |
2017-11-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254254
|
9.8 |
CRITICAL
Network
|
huawei
|
uma
|
The UMA product with software V200R001 has a privilege elevation vulnerability due to insufficient validation or improper processing of parameters. An attacker could craft specific packets to exploit…
|
CWE-20
Improper Input Validation
|
CVE-2017-8122
|
2024-11-21 12:33 |
2017-11-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254255
|
5.3 |
MEDIUM
Network
|
huawei
|
uma
|
The UMA product with software V200R001 and V300R001 has an information leak vulnerability. An attacker could exploit them to obtain some sensitive information, causing information leak.
|
CWE-200
Information Exposure
|
CVE-2017-8121
|
2024-11-21 12:33 |
2017-11-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254256
|
9.8 |
CRITICAL
Network
|
huawei
|
uma
|
The UMA product with software V200R001 and V300R001 has a privilege elevation vulnerability due to insufficient validation or improper processing of parameters. An attacker could craft specific packe…
|
CWE-20
Improper Input Validation
|
CVE-2017-8120
|
2024-11-21 12:33 |
2017-11-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254257
|
9.8 |
CRITICAL
Network
|
huawei
|
uma
|
The UMA product with software V200R001 and V300R001 has a privilege elevation vulnerability due to insufficient validation or improper processing of parameters. An attacker could craft specific packe…
|
CWE-20
Improper Input Validation
|
CVE-2017-8119
|
2024-11-21 12:33 |
2017-11-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254258
|
2.3 |
LOW
Local
|
huawei
|
uma
|
The UMA product with software V200R001 and V300R001 has an information leak vulnerability. An attacker could exploit them to obtain some sensitive information, causing information leak.
|
CWE-200
Information Exposure
|
CVE-2017-8118
|
2024-11-21 12:33 |
2017-11-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254259
|
9.8 |
CRITICAL
Network
|
huawei
|
uma
|
The UMA product with software V200R001 and V300R001 has a privilege elevation vulnerability due to insufficient validation or improper processing of parameters. An attacker could craft specific packe…
|
CWE-20
Improper Input Validation
|
CVE-2017-8117
|
2024-11-21 12:33 |
2017-11-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254260
|
7.5 |
HIGH
Network
|
google
|
android
|
In android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, missing race condition protection while updating msg mask table can lead to buffer over…
|
CWE-362
Race Condition
|
CVE-2017-8279
|
2024-11-21 12:33 |
2017-11-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
