Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor H3c Subscribe
Total 157 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-27801 1 H3c 1 Magic R100 Firmware 2023-11-07 N/A 4.9 MEDIUM
H3C Magic R100 R100V100R005.bin was discovered to contain a stack overflow via the DelDNSHnList interface at /goform/aspForm. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted payload.
CVE-2022-28940 1 H3c 2 Magic R100, Magic R100 Firmware 2023-08-08 7.1 HIGH 7.5 HIGH
In H3C MagicR100 <=V100R005, the / Ajax / ajaxget interface can be accessed without authorization. It sends a large amount of data through ajaxmsg to carry out DOS attack.
CVE-2022-36509 1 H3c 2 Gr3200, Gr3200 Firmware 2023-08-08 N/A 7.8 HIGH
H3C GR3200 MiniGR1B0V100R014 was discovered to contain a command injection vulnerability via the param parameter at DelL2tpLNSList.
CVE-2022-36510 1 H3c 2 Gr2200, Gr2200 Firmware 2023-08-08 N/A 7.8 HIGH
H3C GR2200 MiniGR1A0V100R014 was discovered to contain a command injection vulnerability via the param parameter at DelL2tpLNSList.
CVE-2022-37070 1 H3c 2 Gr-1200w, Gr-1200w Firmware 2023-08-08 N/A 9.8 CRITICAL
H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a command injection vulnerability via the param parameter at DelL2tpLNSList.
CVE-2023-34924 1 H3c 2 Magic B1stw, Magic B1stw Firmware 2023-07-07 N/A 7.5 HIGH
H3C Magic B1STW B1STV100R012 was discovered to contain a stack overflow via the function SetAPInfoById. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted POST request.
CVE-2023-34928 1 H3c 2 Magic B1st, Magic B1st Firmware 2023-07-05 N/A 7.5 HIGH
A stack overflow in the Edit_BasicSSID function of H3C Magic B1STV100R012 allows attackers to cause a Denial of Service (DoS) via a crafted POST request.
CVE-2023-34929 1 H3c 2 Magic B1st, Magic B1st Firmware 2023-07-05 N/A 7.5 HIGH
A stack overflow in the AddMacList function of H3C Magic B1STV100R012 allows attackers to cause a Denial of Service (DoS) via a crafted POST request.
CVE-2023-34930 1 H3c 2 Magic B1st, Magic B1st Firmware 2023-07-05 N/A 7.5 HIGH
A stack overflow in the EditMacList function of H3C Magic B1STV100R012 allows attackers to cause a Denial of Service (DoS) via a crafted POST request.
CVE-2023-34931 1 H3c 2 Magic B1st, Magic B1st Firmware 2023-07-05 N/A 7.5 HIGH
A stack overflow in the EditWlanMacList function of H3C Magic B1STV100R012 allows attackers to cause a Denial of Service (DoS) via a crafted POST request.
CVE-2023-34932 1 H3c 2 Magic B1st, Magic B1st Firmware 2023-07-05 N/A 7.5 HIGH
A stack overflow in the UpdateWanMode function of H3C Magic B1STV100R012 allows attackers to cause a Denial of Service (DoS) via a crafted POST request.
CVE-2023-34933 1 H3c 2 Magic B1st, Magic B1st Firmware 2023-07-05 N/A 7.5 HIGH
A stack overflow in the UpdateWanParams function of H3C Magic B1STV100R012 allows attackers to cause a Denial of Service (DoS) via a crafted POST request.
CVE-2023-34934 1 H3c 2 Magic B1st, Magic B1st Firmware 2023-07-05 N/A 7.5 HIGH
A stack overflow in the Edit_BasicSSID_5G function of H3C Magic B1STV100R012 allows attackers to cause a Denial of Service (DoS) via a crafted POST request.
CVE-2023-34935 1 H3c 2 Magic B1st, Magic B1st Firmware 2023-07-05 N/A 7.5 HIGH
A stack overflow in the AddWlanMacList function of H3C Magic B1STV100R012 allows attackers to cause a Denial of Service (DoS) via a crafted POST request.
CVE-2023-34936 1 H3c 2 Magic B1st, Magic B1st Firmware 2023-07-05 N/A 7.5 HIGH
A stack overflow in the UpdateMacClone function of H3C Magic B1STV100R012 allows attackers to cause a Denial of Service (DoS) via a crafted POST request.
CVE-2023-34937 1 H3c 2 Magic B1st, Magic B1st Firmware 2023-07-05 N/A 7.5 HIGH
A stack overflow in the UpdateSnat function of H3C Magic B1STV100R012 allows attackers to cause a Denial of Service (DoS) via a crafted POST request.
CVE-2023-29693 1 H3c 2 Gr-1200w, Gr-1200w Firmware 2023-05-12 N/A 9.8 CRITICAL
H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a stack overflow via the function set_tftp_upgrad.
CVE-2023-29696 1 H3c 2 Gr-1200w, Gr-1200w Firmware 2023-05-12 N/A 9.8 CRITICAL
H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a stack overflow via the function version_set.
CVE-2023-24093 1 H3c 2 A210-g, A210-g Firmware 2023-03-03 N/A 9.8 CRITICAL
An access control issue in H3C A210-G A210-GV100R005 allows attackers to authenticate without a password.
CVE-2022-45963 1 H3c 22 Secpath F100-c-g3, Secpath F100-c-g3 Firmware, Secpath F500-6gw and 19 more 2023-01-06 N/A 9.8 CRITICAL
h3c firewall <= 3.10 ESS6703 has a privilege bypass vulnerability.