Vulnerabilities (CVE)

Filtered by vendor H3c Subscribe

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 3 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2022-28940	1 H3c	2 Magic R100, Magic R100 Firmware	2023-08-08	7.1 HIGH	7.5 HIGH
In H3C MagicR100 <=V100R005, the / Ajax / ajaxget interface can be accessed without authorization. It sends a large amount of data through ajaxmsg to carry out DOS attack.
CVE-2022-36510	1 H3c	2 Gr2200, Gr2200 Firmware	2023-08-08	N/A	7.8 HIGH
H3C GR2200 MiniGR1A0V100R014 was discovered to contain a command injection vulnerability via the param parameter at DelL2tpLNSList.
CVE-2022-36509	1 H3c	2 Gr3200, Gr3200 Firmware	2023-08-08	N/A	7.8 HIGH
H3C GR3200 MiniGR1B0V100R014 was discovered to contain a command injection vulnerability via the param parameter at DelL2tpLNSList.