Vulnerabilities (CVE)

Filtered by vendor Huawei Subscribe
Filtered by product Fusionaccess
Total 5 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-9090 1 Huawei 1 Fusionaccess 2024-11-21 4.6 MEDIUM 7.8 HIGH
FusionAccess version 6.5.1 has an improper authorization vulnerability. A command is authorized with incorrect privilege. Attackers with other privilege can execute the command to exploit this vulnerability. This may compromise normal service of the affected product.
CVE-2020-1825 1 Huawei 1 Fusionaccess 2024-11-21 4.0 MEDIUM 6.5 MEDIUM
FusionAccess with versions earlier than 6.5.1.SPC002 have a Denial of Service (DoS) vulnerability. Due to insufficient verification on specific input, attackers can exploit this vulnerability by sending constructed messages to the affected device through another device on the same network. Successful exploit could cause affected devices to be abnormal.
CVE-2016-8779 1 Huawei 1 Fusionaccess 2024-11-21 4.0 MEDIUM 6.5 MEDIUM
Huawei FusionAccess with software V100R005C10 and V100R005C20 could allow remote attackers with specific permission to inject a Lightweight Directory Access Protocol (LDAP) operation command into a specific input variable to obtain sensitive information from the database.
CVE-2016-6839 1 Huawei 1 Fusionaccess 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
CRLF injection vulnerability in Huawei FusionAccess before V100R006C00 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors.
CVE-2015-7844 1 Huawei 1 Fusionaccess 2024-11-21 7.8 HIGH 7.5 HIGH
Huawei FusionAccess with software V100R005C10,V100R005C20 could allow attackers to craft and send a malformed HDP protocol packet to cause the virtual cloud desktop to be displaying an error and not usable.