Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor H3c Subscribe
Total 116 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-36468 1 H3c 2 B5 Mini, B5 Mini Firmware 2024-02-04 N/A 7.8 HIGH
H3C B5 Mini B5MiniV100R005 was discovered to contain a stack overflow via the function Asp_SetTimingtimeWifiAndLed.
CVE-2022-34608 1 H3c 2 Magic R200, Magic R200 Firmware 2024-02-04 N/A 9.8 CRITICAL
H3C Magic R200 R200V200R004L02 was discovered to contain a stack overflow via the ajaxmsg parameter at /AJAX/ajaxget.
CVE-2022-34603 1 H3c 2 Magic R200, Magic R200 Firmware 2024-02-04 N/A 9.8 CRITICAL
H3C Magic R200 R200V200R004L02 was discovered to contain a stack overflow via the DelDNSHnList interface at /goform/aspForm.
CVE-2022-34598 1 H3c 2 Magic R100, Magic R100 Firmware 2024-02-04 7.5 HIGH 9.8 CRITICAL
The udpserver in H3C Magic R100 V200R004 and V100R005 has the 9034 port opened, allowing attackers to execute arbitrary commands.
CVE-2022-36490 1 H3c 2 Magic Nx18 Plus, Magic Nx18 Plus Firmware 2024-02-04 N/A 7.8 HIGH
H3C Magic NX18 Plus NX18PV100R003 was discovered to contain a stack overflow via the function EditMacList.
CVE-2022-36491 1 H3c 2 Magic Nx18 Plus, Magic Nx18 Plus Firmware 2024-02-04 N/A 7.8 HIGH
H3C Magic NX18 Plus NX18PV100R003 was discovered to contain a stack overflow via the function UpdateIpv6Params.
CVE-2022-34607 1 H3c 2 Magic R200, Magic R200 Firmware 2024-02-04 N/A 9.8 CRITICAL
H3C Magic R200 R200V200R004L02 was discovered to contain a stack overflow via the HOST parameter at /doping.asp.
CVE-2022-36500 1 H3c 2 Magic Nx18 Plus, Magic Nx18 Plus Firmware 2024-02-04 N/A 7.8 HIGH
H3C Magic NX18 Plus NX18PV100R003 was discovered to contain a stack overflow via the function EditWlanMacList.
CVE-2022-36492 1 H3c 2 Magic Nx18 Plus, Magic Nx18 Plus Firmware 2024-02-04 N/A 7.8 HIGH
H3C Magic NX18 Plus NX18PV100R003 was discovered to contain a stack overflow via the function AddMacList.
CVE-2022-35416 1 H3c 1 Ssl Vpn 2024-02-04 4.3 MEDIUM 6.1 MEDIUM
H3C SSL VPN through 2022-07-10 allows wnm/login/login.json svpnlang cookie XSS.
CVE-2022-34602 1 H3c 2 Magic R200, Magic R200 Firmware 2024-02-04 N/A 9.8 CRITICAL
H3C Magic R200 R200V200R004L02 was discovered to contain a stack overflow via the ipqos_lanip_editlist interface at /goform/aspForm.
CVE-2022-36502 1 H3c 2 Magic Nx18 Plus, Magic Nx18 Plus Firmware 2024-02-04 N/A 7.8 HIGH
H3C Magic NX18 Plus NX18PV100R003 was discovered to contain a stack overflow via the function UpdateWanParams.
CVE-2022-36489 1 H3c 2 Magic Nx18 Plus, Magic Nx18 Plus Firmware 2024-02-04 N/A 7.8 HIGH
H3C Magic NX18 Plus NX18PV100R003 was discovered to contain a stack overflow via the function EnableIpv6.
CVE-2022-36470 1 H3c 2 B5 Mini, B5 Mini Firmware 2024-02-04 N/A 7.8 HIGH
H3C B5 Mini B5MiniV100R005 was discovered to contain a stack overflow via the function SetAP5GWifiById.
CVE-2022-36507 1 H3c 2 Magic Nx18 Plus, Magic Nx18 Plus Firmware 2024-02-04 N/A 7.8 HIGH
H3C Magic NX18 Plus NX18PV100R003 was discovered to contain a stack overflow via the function AddWlanMacList.
CVE-2022-34599 1 H3c 2 Magic R200, Magic R200 Firmware 2024-02-04 N/A 9.8 CRITICAL
H3C Magic R200 R200V200R004L02 was discovered to contain a stack overflow via the EdittriggerList interface at /goform/aspForm.
CVE-2022-28940 1 H3c 2 Magic R100, Magic R100 Firmware 2024-02-04 7.1 HIGH 7.5 HIGH
In H3C MagicR100 <=V100R005, the / Ajax / ajaxget interface can be accessed without authorization. It sends a large amount of data through ajaxmsg to carry out DOS attack.
CVE-2022-30910 1 H3c 2 Magic R100, Magic R100 Firmware 2024-02-04 10.0 HIGH 9.8 CRITICAL
H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the GO parameter at /goform/aspForm.
CVE-2022-30919 1 H3c 2 Magic R100, Magic R100 Firmware 2024-02-04 10.0 HIGH 9.8 CRITICAL
H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the Edit_BasicSSID_5G parameter at /goform/aspForm.
CVE-2022-30914 1 H3c 2 Magic R100, Magic R100 Firmware 2024-02-04 10.0 HIGH 9.8 CRITICAL
H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the UpdateMacClone parameter at /goform/aspForm.