H3c: Security Vulnerabilities
H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the UpdateWanParams parameter at /goform/aspForm.
CVSS Score
9.8
EPSS Score
0.004
Published
2022-06-08
H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the ipqos_set_bandwidth parameter at /goform/aspForm.
CVSS Score
9.8
EPSS Score
0.004
Published
2022-06-08
In H3C MagicR100 <=V100R005, the / Ajax / ajaxget interface can be accessed without authorization. It sends a large amount of data through ajaxmsg to carry out DOS attack.
CVSS Score
7.5
EPSS Score
0.003
Published
2022-05-04
H3C H3Cloud OS all versions allows SQL injection via the ear/grid_event sidx parameter.
CVSS Score
9.8
EPSS Score
0.003
Published
2019-07-19
Unspecified vulnerability in HP and H3C VPN Firewall Module products SECPATH1000FE before 5.20.R3177 and SECBLADEFW before 5.20.R3177 allows remote attackers to cause a denial of service via unknown vectors.
CVSS Score
7.8
EPSS Score
0.014
Published
2014-07-28
Page 18