Ch242 V3 Firmware

ch242_v3_firmware

Vendor: Huawei • 7 CVEs

CVEs (7)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2019-0708 3Huawei MicrosoftSiemens 67Agile Controller Campus Firmware Aptio FirmwareAtellica Solution Firmware+64 more Oct 29, 2025 May 16, 2019 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 A remote code execution vulnerability exists in Remote Desktop Services formerly known as Terminal Services when an unauthenticated attacker connects to the target system using RDP and sends specially crafted requests, a...Show more A remote code execution vulnerability exists in Remote Desktop Services formerly known as Terminal Services when an unauthenticated attacker connects to the target system using RDP and sends specially crafted requests, aka 'Remote Desktop Services Remote Code Execution Vulnerability'.Show less
CVE-2018-7943 1Huawei 201288h V5 Firmware 2288h V5 Firmware2488 V5 Firmware+17 more Nov 21, 2024 Jun 5, 2018 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 There is an authentication bypass vulnerability in some Huawei servers. A remote attacker with low privilege may bypass the authentication by some special operations. Due to insufficient authentication, an attacker may e...Show more There is an authentication bypass vulnerability in some Huawei servers. A remote attacker with low privilege may bypass the authentication by some special operations. Due to insufficient authentication, an attacker may exploit the vulnerability to get some sensitive information and high-level users' privilege.Show less
CVE-2018-7951 1Huawei 201288h V5 Firmware 2288h V5 Firmware2488 V5 Firmware+17 more Nov 21, 2024 Jun 1, 2018 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 The iBMC (Intelligent Baseboard Management Controller) of some Huawei servers have a JSON injection vulnerability due to insufficient input validation. An authenticated, remote attacker can launch a JSON injection to mod...Show more The iBMC (Intelligent Baseboard Management Controller) of some Huawei servers have a JSON injection vulnerability due to insufficient input validation. An authenticated, remote attacker can launch a JSON injection to modify the password of administrator. Successful exploit may allow attackers to obtain the management privilege of the system.Show less
CVE-2018-7950 1Huawei 201288h V5 Firmware 2288h V5 Firmware2488 V5 Firmware+17 more Nov 21, 2024 Jun 1, 2018 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 The iBMC (Intelligent Baseboard Management Controller) of some Huawei servers have a JSON injection vulnerability due to insufficient input validation. An authenticated, remote attacker can launch a JSON injection to mod...Show more The iBMC (Intelligent Baseboard Management Controller) of some Huawei servers have a JSON injection vulnerability due to insufficient input validation. An authenticated, remote attacker can launch a JSON injection to modify the password of administrator. Successful exploit may allow attackers to obtain the management privilege of the system.Show less
CVE-2018-7949 1Huawei 201288h V5 Firmware 2288h V5 Firmware2488 V5 Firmware+17 more Nov 21, 2024 Jun 1, 2018 N/A· v4 8.8 HIGH· v3 4.0 MEDIUM· v2 The iBMC (Intelligent Baseboard Management Controller) of some Huawei servers have a privilege escalation vulnerability. A remote attacker may send some specially crafted login messages to the affected products. Due to i...Show more The iBMC (Intelligent Baseboard Management Controller) of some Huawei servers have a privilege escalation vulnerability. A remote attacker may send some specially crafted login messages to the affected products. Due to improper authentication design, successful exploit enables low privileged users to get or modify passwords of highly privileged users.Show less
CVE-2018-7942 1Huawei 71288h V5 Firmware 2288h V5 Firmware2488 V5 Firmware+4 more Nov 21, 2024 May 24, 2018 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 The iBMC (Intelligent Baseboard Management Controller) of some Huawei servers have an authentication bypass vulnerability. An unauthenticated, remote attacker may send some specially crafted messages to the affected prod...Show more The iBMC (Intelligent Baseboard Management Controller) of some Huawei servers have an authentication bypass vulnerability. An unauthenticated, remote attacker may send some specially crafted messages to the affected products. Due to improper authentication design, successful exploit may cause some information leak.Show less
CVE-2018-7941 1Huawei 201288h V5 Firmware 2288h V5 Firmware2488 V5 Firmware+17 more Nov 21, 2024 May 10, 2018 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 Huawei iBMC V200R002C60 have an authentication bypass vulnerability. A remote attacker with low privilege may craft specific messages to upload authentication certificate to the affected products. Due to improper validat...Show more Huawei iBMC V200R002C60 have an authentication bypass vulnerability. A remote attacker with low privilege may craft specific messages to upload authentication certificate to the affected products. Due to improper validation of the upload authority, successful exploit may cause privilege elevation.Show less