h3c CVE Vulnerabilities & Metrics

Focus on h3c vulnerabilities and metrics.

Last updated: 29 Jun 2025, 22:25 UTC

About h3c Security Exposure

This page consolidates all known Common Vulnerabilities and Exposures (CVEs) associated with h3c. We track both calendar-based metrics (using fixed periods) and rolling metrics (using gliding windows) to give you a comprehensive view of security trends and risk evolution. Use these insights to assess risk and plan your patching strategy.

For a broader perspective on cybersecurity threats, explore the comprehensive list of CVEs by vendor and product. Stay updated on critical vulnerabilities affecting major software and hardware providers.

Global CVE Overview

Total h3c CVEs: 164
Earliest CVE date: 28 Jul 2014, 17:55 UTC
Latest CVE date: 14 Jan 2025, 23:15 UTC

Latest CVE reference: CVE-2024-57473

Rolling Stats

30-day Count (Rolling): 0
365-day Count (Rolling): 9

Calendar-based Variation

Calendar-based Variation compares a fixed calendar period (e.g., this month versus the same month last year), while Rolling Growth Rate uses a continuous window (e.g., last 30 days versus the previous 30 days) to capture trends independent of calendar boundaries.

Variations & Growth

Month Variation (Calendar): 0%
Year Variation (Calendar): 350.0%

Month Growth Rate (30-day Rolling): 0.0%
Year Growth Rate (365-day Rolling): 350.0%

Monthly CVE Trends (current vs previous Year)

Annual CVE Trends (Last 20 Years)

Critical h3c CVEs (CVSS ≥ 9) Over 20 Years

CVSS Stats

Average CVSS: 1.24

Max CVSS: 10.0

Critical CVEs (≥9): 17

CVSS Range vs. Count

Range	Count
0.0-3.9	143
4.0-6.9	1
7.0-8.9	4
9.0-10.0	17

CVSS Distribution Chart

Top 5 Highest CVSS h3c CVEs

These are the five CVEs with the highest CVSS scores for h3c, sorted by severity first and recency.

CVE-2022-30926 h3c Published on 08 Jun 2022, 14:15 UTC (CVSS: 10.0)
H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the EditMacList parameter at /goform/aspForm.
CVE-2022-30925 h3c Published on 08 Jun 2022, 14:15 UTC (CVSS: 10.0)
H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the AddMacList parameter at /goform/aspForm.
CVE-2022-30924 h3c Published on 08 Jun 2022, 14:15 UTC (CVSS: 10.0)
H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the SetAPWifiorLedInfoById parameter at /goform/aspForm.
CVE-2022-30923 h3c Published on 08 Jun 2022, 14:15 UTC (CVSS: 10.0)
H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the Asp_SetTimingtimeWifiAndLed parameter at /goform/aspForm.
CVE-2022-30922 h3c Published on 08 Jun 2022, 14:15 UTC (CVSS: 10.0)
H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the EditWlanMacList parameter at /goform/aspForm.

All CVEs for h3c

CVE-2024-57473 h3c vulnerability CVSS: 0 14 Jan 2025, 23:15 UTC

H3C N12 V100R005 contains a buffer overflow vulnerability due to the lack of length verification in the mac address editing function. Attackers who successfully exploit this vulnerability can cause the remote target device to crash or execute arbitrary commands by sending a POST request to /bin/webs.

CVE-2024-57482 h3c vulnerability CVSS: 0 14 Jan 2025, 22:15 UTC

H3C N12 V100R005 contains a buffer overflow vulnerability due to the lack of length verification in the 5G wireless network processing function. Attackers who successfully exploit this vulnerability can cause the remote target device to crash or execute arbitrary commands by sending a POST request to /bin/webs.

CVE-2024-57480 h3c vulnerability CVSS: 0 14 Jan 2025, 22:15 UTC

H3C N12 V100R005 contains a buffer overflow vulnerability due to the lack of length verification in the AP configuration function. Attackers who successfully exploit this vulnerability can cause the remote target device to crash or execute arbitrary commands by sending a POST request to /bin/webs.

CVE-2024-57479 h3c vulnerability CVSS: 0 14 Jan 2025, 22:15 UTC

H3C N12 V100R005 contains a buffer overflow vulnerability due to the lack of length verification in the mac address update function. Attackers who successfully exploit this vulnerability can cause the remote target device to crash or execute arbitrary commands by sending a POST request to /bin/webs.

CVE-2024-57471 h3c vulnerability CVSS: 0 14 Jan 2025, 22:15 UTC

H3C N12 V100R005 contains a buffer overflow vulnerability due to the lack of length verification in the 2.4G wireless network processing function. Attackers who successfully exploit this vulnerability can cause the remote target device to crash or execute arbitrary commands by sending a POST request to /bin/webs.

CVE-2024-52765 h3c vulnerability CVSS: 0 20 Nov 2024, 21:15 UTC

H3C GR-1800AX MiniGRW1B0V100R007 is vulnerable to remote code execution (RCE) via the aspForm parameter.

CVE-2024-42639 h3c vulnerability CVSS: 0 16 Aug 2024, 18:15 UTC

H3C GR1100-P v100R009 was discovered to use a hardcoded password in /etc/shadow, which allows attackers to log in as root.

CVE-2024-42638 h3c vulnerability CVSS: 0 16 Aug 2024, 18:15 UTC

H3C Magic B1ST v100R012 was discovered to contain a hardcoded password vulnerability in /etc/shadow, which allows attackers to log in as root.

CVE-2024-42637 h3c vulnerability CVSS: 0 16 Aug 2024, 18:15 UTC

H3C R3010 v100R002L02 was discovered to contain a hardcoded password vulnerability in /etc/shadow, which allows attackers to log in as root.

CVE-2024-38903 h3c vulnerability CVSS: 0 24 Jun 2024, 21:15 UTC

H3C Magic R230 V100R002's udpserver opens port 9034, allowing attackers to execute arbitrary commands.

CVE-2024-38902 h3c vulnerability CVSS: 0 24 Jun 2024, 21:15 UTC

H3C Magic R230 V100R002 was discovered to contain a hardcoded password vulnerability in /etc/shadow, which allows attackers to log in as root.

CVE-2023-34937 h3c vulnerability CVSS: 0 28 Jun 2023, 15:15 UTC

A stack overflow in the UpdateSnat function of H3C Magic B1STV100R012 allows attackers to cause a Denial of Service (DoS) via a crafted POST request.

CVE-2023-34936 h3c vulnerability CVSS: 0 28 Jun 2023, 15:15 UTC

A stack overflow in the UpdateMacClone function of H3C Magic B1STV100R012 allows attackers to cause a Denial of Service (DoS) via a crafted POST request.

CVE-2023-34935 h3c vulnerability CVSS: 0 28 Jun 2023, 15:15 UTC

A stack overflow in the AddWlanMacList function of H3C Magic B1STV100R012 allows attackers to cause a Denial of Service (DoS) via a crafted POST request.

CVE-2023-34934 h3c vulnerability CVSS: 0 28 Jun 2023, 15:15 UTC

A stack overflow in the Edit_BasicSSID_5G function of H3C Magic B1STV100R012 allows attackers to cause a Denial of Service (DoS) via a crafted POST request.

CVE-2023-34933 h3c vulnerability CVSS: 0 28 Jun 2023, 15:15 UTC

A stack overflow in the UpdateWanParams function of H3C Magic B1STV100R012 allows attackers to cause a Denial of Service (DoS) via a crafted POST request.

CVE-2023-34932 h3c vulnerability CVSS: 0 28 Jun 2023, 14:15 UTC

A stack overflow in the UpdateWanMode function of H3C Magic B1STV100R012 allows attackers to cause a Denial of Service (DoS) via a crafted POST request.

CVE-2023-34931 h3c vulnerability CVSS: 0 28 Jun 2023, 14:15 UTC

A stack overflow in the EditWlanMacList function of H3C Magic B1STV100R012 allows attackers to cause a Denial of Service (DoS) via a crafted POST request.

CVE-2023-34930 h3c vulnerability CVSS: 0 28 Jun 2023, 14:15 UTC

A stack overflow in the EditMacList function of H3C Magic B1STV100R012 allows attackers to cause a Denial of Service (DoS) via a crafted POST request.

CVE-2023-34929 h3c vulnerability CVSS: 0 28 Jun 2023, 14:15 UTC

A stack overflow in the AddMacList function of H3C Magic B1STV100R012 allows attackers to cause a Denial of Service (DoS) via a crafted POST request.

CVE-2023-34928 h3c vulnerability CVSS: 0 28 Jun 2023, 14:15 UTC

A stack overflow in the Edit_BasicSSID function of H3C Magic B1STV100R012 allows attackers to cause a Denial of Service (DoS) via a crafted POST request.

CVE-2023-34924 h3c vulnerability CVSS: 0 26 Jun 2023, 21:15 UTC

H3C Magic B1STW B1STV100R012 was discovered to contain a stack overflow via the function SetAPInfoById. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted POST request.

CVE-2023-33643 h3c vulnerability CVSS: 0 31 May 2023, 21:15 UTC

H3C Magic R300 version R300-2100MV100R004 was discovered to contain a stack overflow via the AddWlanMacList interface at /goform/aspForm.

CVE-2023-33642 h3c vulnerability CVSS: 0 31 May 2023, 21:15 UTC

H3C Magic R300 version R300-2100MV100R004 was discovered to contain a stack overflow via the Edit_BasicSSID interface at /goform/aspForm.

CVE-2023-33641 h3c vulnerability CVSS: 0 31 May 2023, 21:15 UTC

H3C Magic R300 version R300-2100MV100R004 was discovered to contain a stack overflow via the AddMacList interface at /goform/aspForm.

CVE-2023-33640 h3c vulnerability CVSS: 0 31 May 2023, 21:15 UTC

H3C Magic R300 version R300-2100MV100R004 was discovered to contain a stack overflow via the SetAPWifiorLedInfoById interface at /goform/aspForm.

CVE-2023-33639 h3c vulnerability CVSS: 0 31 May 2023, 21:15 UTC

H3C Magic R300 version R300-2100MV100R004 was discovered to contain a stack overflow via the SetMobileAPInfoById interface at /goform/aspForm.

CVE-2023-33638 h3c vulnerability CVSS: 0 31 May 2023, 21:15 UTC

H3C Magic R300 version R300-2100MV100R004 was discovered to contain a stack overflow via the Edit_BasicSSID_5G interface at /goform/aspForm.

CVE-2023-33637 h3c vulnerability CVSS: 0 31 May 2023, 21:15 UTC

H3C Magic R300 version R300-2100MV100R004 was discovered to contain a stack overflow via the DelDNSHnList interface at /goform/aspForm.

CVE-2023-33636 h3c vulnerability CVSS: 0 31 May 2023, 21:15 UTC

H3C Magic R300 version R300-2100MV100R004 was discovered to contain a stack overflow via the ipqos_lanip_editlist interface at /goform/aspForm.

CVE-2023-33635 h3c vulnerability CVSS: 0 31 May 2023, 21:15 UTC

H3C Magic R300 version R300-2100MV100R004 was discovered to contain a stack overflow via the UpdateMacClone interface at /goform/aspForm.

CVE-2023-33634 h3c vulnerability CVSS: 0 31 May 2023, 21:15 UTC

H3C Magic R300 version R300-2100MV100R004 was discovered to contain a stack overflow via the EdittriggerList interface at /goform/aspForm.

CVE-2023-33633 h3c vulnerability CVSS: 0 31 May 2023, 21:15 UTC

H3C Magic R300 version R300-2100MV100R004 was discovered to contain a stack overflow via the UpdateWanParams interface at /goform/aspForm.

CVE-2023-33632 h3c vulnerability CVSS: 0 31 May 2023, 21:15 UTC

H3C Magic R300 version R300-2100MV100R004 was discovered to contain a stack overflow via the ipqos_lanip_dellist interface at /goform/aspForm.

CVE-2023-33631 h3c vulnerability CVSS: 0 31 May 2023, 21:15 UTC

H3C Magic R300 version R300-2100MV100R004 was discovered to contain a stack overflow via the DelSTList interface at /goform/aspForm.

CVE-2023-33630 h3c vulnerability CVSS: 0 31 May 2023, 21:15 UTC

H3C Magic R300 version R300-2100MV100R004 was discovered to contain a stack overflow via the EditvsList interface at /goform/aspForm.

CVE-2023-33629 h3c vulnerability CVSS: 0 31 May 2023, 21:15 UTC

H3C Magic R300 version R300-2100MV100R004 was discovered to contain a stack overflow via the DeltriggerList interface at /goform/aspForm.

CVE-2023-33628 h3c vulnerability CVSS: 0 31 May 2023, 21:15 UTC

H3C Magic R300 version R300-2100MV100R004 was discovered to contain a stack overflow via the DelvsList interface at /goform/aspForm.

CVE-2023-33627 h3c vulnerability CVSS: 0 31 May 2023, 21:15 UTC

H3C Magic R300 version R300-2100MV100R004 was discovered to contain a stack overflow via the UpdateSnat interface at /goform/aspForm.

CVE-2023-2676 h3c vulnerability CVSS: 5.2 12 May 2023, 09:15 UTC

A vulnerability, which was classified as critical, has been found in H3C R160 V1004004. Affected by this issue is some unknown functionality of the file /goForm/aspForm. The manipulation of the argument go leads to stack-based buffer overflow. The exploit has been disclosed to the public and may be used. VDB-228890 is the identifier assigned to this vulnerability.

CVE-2023-29696 h3c vulnerability CVSS: 0 08 May 2023, 15:15 UTC

H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a stack overflow via the function version_set.

CVE-2023-29693 h3c vulnerability CVSS: 0 08 May 2023, 15:15 UTC

H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a stack overflow via the function set_tftp_upgrad.

CVE-2023-29917 h3c vulnerability CVSS: 0 21 Apr 2023, 15:15 UTC

H3C Magic R200 version R200V100R004 was discovered to contain a stack overflow via go parameter at /goform/aspForm.

CVE-2023-29916 h3c vulnerability CVSS: 0 21 Apr 2023, 15:15 UTC

H3C Magic R200 version R200V100R004 was discovered to contain a stack overflow via the UpdateWanParams interface at /goform/aspForm.

CVE-2023-29915 h3c vulnerability CVSS: 0 21 Apr 2023, 15:15 UTC

H3C Magic R200 version R200V100R004 was discovered to contain a stack overflow via CMD parameter at /goform/aspForm.

CVE-2023-29914 h3c vulnerability CVSS: 0 21 Apr 2023, 15:15 UTC

H3C Magic R200 version R200V100R004 was discovered to contain a stack overflow via the DeltriggerList interface at /goform/aspForm.

CVE-2023-29913 h3c vulnerability CVSS: 0 21 Apr 2023, 15:15 UTC

H3C Magic R200 version R200V100R004 was discovered to contain a stack overflow via the SetAPWifiorLedInfoById interface at /goform/aspForm.

CVE-2023-29912 h3c vulnerability CVSS: 0 21 Apr 2023, 15:15 UTC

H3C Magic R200 R200V100R004 was discovered to contain a stack overflow via the DelvsList interface at /goform/aspForm.

CVE-2023-29911 h3c vulnerability CVSS: 0 21 Apr 2023, 15:15 UTC

H3C Magic R200 version R200V100R004 was discovered to contain a stack overflow via the AddMacList interface at /goform/aspForm.

CVE-2023-29910 h3c vulnerability CVSS: 0 21 Apr 2023, 15:15 UTC

H3C Magic R200 version R200V100R004 was discovered to contain a stack overflow via the UpdateMacClone interface at /goform/aspForm.

CVE-2023-29909 h3c vulnerability CVSS: 0 21 Apr 2023, 15:15 UTC

H3C Magic R200 version R200V100R004 was discovered to contain a stack overflow via the AddWlanMacList interface at /goform/aspForm.

CVE-2023-29908 h3c vulnerability CVSS: 0 21 Apr 2023, 15:15 UTC

H3C Magic R200 version R200V100R004 was discovered to contain a stack overflow via the SetMobileAPInfoById interface at /goform/aspForm.

CVE-2023-29907 h3c vulnerability CVSS: 0 21 Apr 2023, 15:15 UTC

H3C Magic R200 version R200V100R004 was discovered to contain a stack overflow via the Edit_BasicSSID_5G interface at /goform/aspForm.

CVE-2023-29906 h3c vulnerability CVSS: 0 21 Apr 2023, 15:15 UTC

H3C Magic R200 version R200V100R004 was discovered to contain a stack overflow via the Edit_BasicSSID interface at /goform/aspForm.

CVE-2023-29905 h3c vulnerability CVSS: 0 21 Apr 2023, 15:15 UTC

H3C Magic R200 version R200V100R004 was discovered to contain a stack overflow via the UpdateSnat interface at /goform/aspForm.

CVE-2023-27810 h3c vulnerability CVSS: 0 07 Apr 2023, 14:15 UTC

H3C Magic R100 R100V100R005.bin was discovered to contain a stack overflow via the ipqos_lanip_editlist interface at /goform/aspForm. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted payload.

CVE-2023-27808 h3c vulnerability CVSS: 0 07 Apr 2023, 14:15 UTC

H3C Magic R100 R100V100R005.bin was discovered to contain a stack overflow via the DeltriggerList interface at /goform/aspForm. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted payload.

CVE-2023-27807 h3c vulnerability CVSS: 0 07 Apr 2023, 14:15 UTC

H3C Magic R100 R100V100R005.bin was discovered to contain a stack overflow via the Delstlist interface at /goform/aspForm. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted payload.

CVE-2023-27806 h3c vulnerability CVSS: 0 07 Apr 2023, 14:15 UTC

H3C Magic R100 R100V100R005.bin was discovered to contain a stack overflow via the ipqos_lanip_dellist interface at /goform/aspForm. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted payload.

CVE-2023-27805 h3c vulnerability CVSS: 0 07 Apr 2023, 14:15 UTC

H3C Magic R100 R100V100R005.bin was discovered to contain a stack overflow via the EditSTList interface at /goform/aspForm. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted payload.

CVE-2023-27804 h3c vulnerability CVSS: 0 07 Apr 2023, 14:15 UTC

H3C Magic R100 R100V100R005.bin was discovered to contain a stack overflow via the DelvsList interface at /goform/aspForm. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted payload.

CVE-2023-27803 h3c vulnerability CVSS: 0 07 Apr 2023, 14:15 UTC

H3C Magic R100 R100V100R005.bin was discovered to contain a stack overflow via the EdittriggerList interface at /goform/aspForm. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted payload.

CVE-2023-27802 h3c vulnerability CVSS: 0 07 Apr 2023, 14:15 UTC

H3C Magic R100 R100V100R005.bin was discovered to contain a stack overflow via the EditvsList parameter at /goform/aspForm. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted payload.

CVE-2023-27801 h3c vulnerability CVSS: 0 07 Apr 2023, 14:15 UTC

H3C Magic R100 R100V100R005.bin was discovered to contain a stack overflow via the DelDNSHnList interface at /goform/aspForm. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted payload.

CVE-2023-24093 h3c vulnerability CVSS: 0 22 Feb 2023, 20:15 UTC

An access control issue in H3C A210-G A210-GV100R005 allows attackers to authenticate without a password.

CVE-2022-37100 h3c vulnerability CVSS: 0 25 Aug 2022, 15:15 UTC

H3C H200 H200V100R004 was discovered to contain a stack overflow via the function UpdateMacClone.

CVE-2022-37099 h3c vulnerability CVSS: 0 25 Aug 2022, 15:15 UTC

H3C H200 H200V100R004 was discovered to contain a stack overflow via the function UpdateSnat.

CVE-2022-37098 h3c vulnerability CVSS: 0 25 Aug 2022, 15:15 UTC

H3C H200 H200V100R004 was discovered to contain a stack overflow via the function UpdateIpv6Params.

CVE-2022-37097 h3c vulnerability CVSS: 0 25 Aug 2022, 15:15 UTC

H3C H200 H200V100R004 was discovered to contain a stack overflow via the function SetAPInfoById.

CVE-2022-37096 h3c vulnerability CVSS: 0 25 Aug 2022, 15:15 UTC

H3C H200 H200V100R004 was discovered to contain a stack overflow via the function EnableIpv6.

CVE-2022-37095 h3c vulnerability CVSS: 0 25 Aug 2022, 15:15 UTC

H3C H200 H200V100R004 was discovered to contain a stack overflow via the function UpdateWanParams.

CVE-2022-37094 h3c vulnerability CVSS: 0 25 Aug 2022, 15:15 UTC

H3C H200 H200V100R004 was discovered to contain a stack overflow via the function Edit_BasicSSID_5G.

CVE-2022-37093 h3c vulnerability CVSS: 0 25 Aug 2022, 15:15 UTC

H3C H200 H200V100R004 was discovered to contain a stack overflow via the function AddMacList.

CVE-2022-37092 h3c vulnerability CVSS: 0 25 Aug 2022, 15:15 UTC

H3C H200 H200V100R004 was discovered to contain a stack overflow via the function SetAPWifiorLedInfoById.

CVE-2022-37091 h3c vulnerability CVSS: 0 25 Aug 2022, 15:15 UTC

H3C H200 H200V100R004 was discovered to contain a stack overflow via the function EditWlanMacList.

CVE-2022-37090 h3c vulnerability CVSS: 0 25 Aug 2022, 15:15 UTC

H3C H200 H200V100R004 was discovered to contain a stack overflow via the function Edit_BasicSSID.

CVE-2022-37089 h3c vulnerability CVSS: 0 25 Aug 2022, 15:15 UTC

H3C H200 H200V100R004 was discovered to contain a stack overflow via the function EditMacList.

CVE-2022-37088 h3c vulnerability CVSS: 0 25 Aug 2022, 15:15 UTC

H3C H200 H200V100R004 was discovered to contain a stack overflow via the function SetAP5GWifiById.

CVE-2022-37087 h3c vulnerability CVSS: 0 25 Aug 2022, 15:15 UTC

H3C H200 H200V100R004 was discovered to contain a stack overflow via the function SetMobileAPInfoById.

CVE-2022-37086 h3c vulnerability CVSS: 0 25 Aug 2022, 15:15 UTC

H3C H200 H200V100R004 was discovered to contain a stack overflow via the function Asp_SetTimingtimeWifiAndLed.

CVE-2022-37085 h3c vulnerability CVSS: 0 25 Aug 2022, 15:15 UTC

H3C H200 H200V100R004 was discovered to contain a stack overflow via the AddWlanMacList function.

CVE-2022-37074 h3c vulnerability CVSS: 0 25 Aug 2022, 14:15 UTC

H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a stack overflow via the function switch_debug_info_set.

CVE-2022-37073 h3c vulnerability CVSS: 0 25 Aug 2022, 14:15 UTC

H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a stack overflow via the function UpdateWanModeMulti.

CVE-2022-37072 h3c vulnerability CVSS: 0 25 Aug 2022, 14:15 UTC

H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a stack overflow via the function UpdateWanLinkspyMulti.

CVE-2022-37071 h3c vulnerability CVSS: 0 25 Aug 2022, 14:15 UTC

H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a stack overflow via the function UpdateOne2One.

CVE-2022-37070 h3c vulnerability CVSS: 0 25 Aug 2022, 14:15 UTC

H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a command injection vulnerability via the param parameter at DelL2tpLNSList.

CVE-2022-37069 h3c vulnerability CVSS: 0 25 Aug 2022, 14:15 UTC

H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a stack overflow via the function UpdateSnat.

CVE-2022-37068 h3c vulnerability CVSS: 0 25 Aug 2022, 14:15 UTC

H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a stack overflow via the function UpdateMacCloneFinal.

CVE-2022-37067 h3c vulnerability CVSS: 0 25 Aug 2022, 14:15 UTC

H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a stack overflow via the function UpdateWanParamsMulti.

CVE-2022-37066 h3c vulnerability CVSS: 0 25 Aug 2022, 14:15 UTC

H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a stack overflow via the function UpdateDDNS.

CVE-2022-36520 h3c vulnerability CVSS: 0 25 Aug 2022, 14:15 UTC

H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a stack overflow via the function DEleteusergroup.

CVE-2022-36519 h3c vulnerability CVSS: 0 25 Aug 2022, 14:15 UTC

H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a stack overflow via the function AddWlanMacList.

CVE-2022-36518 h3c vulnerability CVSS: 0 25 Aug 2022, 14:15 UTC

H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a stack overflow via the function EditWlanMacList.

CVE-2022-36517 h3c vulnerability CVSS: 0 25 Aug 2022, 14:15 UTC

H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a stack overflow via the function debug_wlan_advance.

CVE-2022-36516 h3c vulnerability CVSS: 0 25 Aug 2022, 14:15 UTC

H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a stack overflow via the function ap_version_check.

CVE-2022-36515 h3c vulnerability CVSS: 0 25 Aug 2022, 14:15 UTC

H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a stack overflow via the function addactionlist.

CVE-2022-36514 h3c vulnerability CVSS: 0 25 Aug 2022, 14:15 UTC

H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a stack overflow via the function WanModeSetMultiWan.

CVE-2022-36513 h3c vulnerability CVSS: 0 25 Aug 2022, 14:15 UTC

H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a stack overflow via the function edditactionlist.

CVE-2022-36511 h3c vulnerability CVSS: 0 25 Aug 2022, 14:15 UTC

H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a stack overflow via the function EditApAdvanceInfo.

CVE-2022-36510 h3c vulnerability CVSS: 0 25 Aug 2022, 14:15 UTC

H3C GR2200 MiniGR1A0V100R014 was discovered to contain a command injection vulnerability via the param parameter at DelL2tpLNSList.

CVE-2022-36509 h3c vulnerability CVSS: 0 25 Aug 2022, 14:15 UTC

H3C GR3200 MiniGR1B0V100R014 was discovered to contain a command injection vulnerability via the param parameter at DelL2tpLNSList.

CVE-2022-36508 h3c vulnerability CVSS: 0 25 Aug 2022, 14:15 UTC

H3C Magic NX18 Plus NX18PV100R003 was discovered to contain a stack overflow via the function SetAPInfoById.

CVE-2022-36507 h3c vulnerability CVSS: 0 25 Aug 2022, 14:15 UTC

H3C Magic NX18 Plus NX18PV100R003 was discovered to contain a stack overflow via the function AddWlanMacList.

CVE-2022-36506 h3c vulnerability CVSS: 0 25 Aug 2022, 14:15 UTC

H3C Magic NX18 Plus NX18PV100R003 was discovered to contain a stack overflow via the function SetMacAccessMode.

CVE-2022-36505 h3c vulnerability CVSS: 0 25 Aug 2022, 14:15 UTC

H3C Magic NX18 Plus NX18PV100R003 was discovered to contain a stack overflow via the function EDitusergroup.

CVE-2022-36504 h3c vulnerability CVSS: 0 25 Aug 2022, 14:15 UTC

H3C Magic NX18 Plus NX18PV100R003 was discovered to contain a stack overflow via the function Edit_BasicSSID.

CVE-2022-36503 h3c vulnerability CVSS: 0 25 Aug 2022, 14:15 UTC

H3C Magic NX18 Plus NX18PV100R003 was discovered to contain a stack overflow via the function UpdateMacClone.

CVE-2022-36502 h3c vulnerability CVSS: 0 25 Aug 2022, 14:15 UTC

H3C Magic NX18 Plus NX18PV100R003 was discovered to contain a stack overflow via the function UpdateWanParams.

CVE-2022-36501 h3c vulnerability CVSS: 0 25 Aug 2022, 14:15 UTC

H3C Magic NX18 Plus NX18PV100R003 was discovered to contain a stack overflow via the function UpdateSnat.

CVE-2022-36500 h3c vulnerability CVSS: 0 25 Aug 2022, 14:15 UTC

H3C Magic NX18 Plus NX18PV100R003 was discovered to contain a stack overflow via the function EditWlanMacList.

CVE-2022-36499 h3c vulnerability CVSS: 0 25 Aug 2022, 14:15 UTC

H3C Magic NX18 Plus NX18PV100R003 was discovered to contain a stack overflow via the function DEleteusergroup.

CVE-2022-36498 h3c vulnerability CVSS: 0 25 Aug 2022, 14:15 UTC

H3C Magic NX18 Plus NX18PV100R003 was discovered to contain a stack overflow via the function Asp_SetTimingtimeWifiAndLed.

CVE-2022-36497 h3c vulnerability CVSS: 0 25 Aug 2022, 14:15 UTC

H3C Magic NX18 Plus NX18PV100R003 was discovered to contain a stack overflow via the function Edit_BasicSSID_5G.

CVE-2022-36496 h3c vulnerability CVSS: 0 25 Aug 2022, 14:15 UTC

H3C Magic NX18 Plus NX18PV100R003 was discovered to contain a stack overflow via the function SetMobileAPInfoById.

CVE-2022-36495 h3c vulnerability CVSS: 0 25 Aug 2022, 14:15 UTC

H3C Magic NX18 Plus NX18PV100R003 was discovered to contain a stack overflow via the function addactionlist.

CVE-2022-36494 h3c vulnerability CVSS: 0 25 Aug 2022, 14:15 UTC

H3C Magic NX18 Plus NX18PV100R003 was discovered to contain a stack overflow via the function edditactionlist.

CVE-2022-36493 h3c vulnerability CVSS: 0 25 Aug 2022, 14:15 UTC

H3C Magic NX18 Plus NX18PV100R003 was discovered to contain a stack overflow via the function SetAPWifiorLedInfoById.

CVE-2022-36492 h3c vulnerability CVSS: 0 25 Aug 2022, 14:15 UTC

H3C Magic NX18 Plus NX18PV100R003 was discovered to contain a stack overflow via the function AddMacList.

CVE-2022-36491 h3c vulnerability CVSS: 0 25 Aug 2022, 14:15 UTC

H3C Magic NX18 Plus NX18PV100R003 was discovered to contain a stack overflow via the function UpdateIpv6Params.

CVE-2022-36490 h3c vulnerability CVSS: 0 25 Aug 2022, 14:15 UTC

H3C Magic NX18 Plus NX18PV100R003 was discovered to contain a stack overflow via the function EditMacList.

CVE-2022-36489 h3c vulnerability CVSS: 0 25 Aug 2022, 14:15 UTC

H3C Magic NX18 Plus NX18PV100R003 was discovered to contain a stack overflow via the function EnableIpv6.

CVE-2022-36478 h3c vulnerability CVSS: 0 25 Aug 2022, 14:15 UTC

H3C B5 Mini B5MiniV100R005 was discovered to contain a stack overflow via the function Edit_BasicSSID.

CVE-2022-36477 h3c vulnerability CVSS: 0 25 Aug 2022, 14:15 UTC

H3C B5 Mini B5MiniV100R005 was discovered to contain a stack overflow via the function AddWlanMacList.

CVE-2022-36475 h3c vulnerability CVSS: 0 25 Aug 2022, 14:15 UTC

H3C B5 Mini B5MiniV100R005 was discovered to contain a stack overflow via the function AddMacList.

CVE-2022-36474 h3c vulnerability CVSS: 0 25 Aug 2022, 14:15 UTC

H3C B5 Mini B5MiniV100R005 was discovered to contain a stack overflow via the function WlanWpsSet.

CVE-2022-36473 h3c vulnerability CVSS: 0 25 Aug 2022, 14:15 UTC

H3C B5 Mini B5MiniV100R005 was discovered to contain a stack overflow via the function Edit_BasicSSID_5G.

CVE-2022-36472 h3c vulnerability CVSS: 0 25 Aug 2022, 14:15 UTC

H3C B5 Mini B5MiniV100R005 was discovered to contain a stack overflow via the function SetMobileAPInfoById.

CVE-2022-36471 h3c vulnerability CVSS: 0 25 Aug 2022, 14:15 UTC

H3C B5 Mini B5MiniV100R005 was discovered to contain a stack overflow via the function SetMacAccessMode.

CVE-2022-36470 h3c vulnerability CVSS: 0 25 Aug 2022, 14:15 UTC

H3C B5 Mini B5MiniV100R005 was discovered to contain a stack overflow via the function SetAP5GWifiById.

CVE-2022-36469 h3c vulnerability CVSS: 0 25 Aug 2022, 14:15 UTC

H3C B5 Mini B5MiniV100R005 was discovered to contain a stack overflow via the function SetAPWifiorLedInfoById.

CVE-2022-36468 h3c vulnerability CVSS: 0 25 Aug 2022, 14:15 UTC

H3C B5 Mini B5MiniV100R005 was discovered to contain a stack overflow via the function Asp_SetTimingtimeWifiAndLed.

CVE-2022-36467 h3c vulnerability CVSS: 0 25 Aug 2022, 14:15 UTC

H3C B5 Mini B5MiniV100R005 was discovered to contain a stack overflow via the function EditMacList.d.

CVE-2022-34610 h3c vulnerability CVSS: 0 20 Jul 2022, 14:15 UTC

H3C Magic R200 R200V200R004L02 was discovered to contain a stack overflow via the URL /ihomers/app.

CVE-2022-34609 h3c vulnerability CVSS: 0 20 Jul 2022, 14:15 UTC

H3C Magic R200 R200V200R004L02 was discovered to contain a stack overflow via the INTF parameter at /doping.asp.

CVE-2022-34608 h3c vulnerability CVSS: 0 20 Jul 2022, 14:15 UTC

H3C Magic R200 R200V200R004L02 was discovered to contain a stack overflow via the ajaxmsg parameter at /AJAX/ajaxget.

CVE-2022-34607 h3c vulnerability CVSS: 0 20 Jul 2022, 14:15 UTC

H3C Magic R200 R200V200R004L02 was discovered to contain a stack overflow via the HOST parameter at /doping.asp.

CVE-2022-34606 h3c vulnerability CVSS: 0 20 Jul 2022, 14:15 UTC

H3C Magic R200 R200V200R004L02 was discovered to contain a stack overflow via the EditvsList parameter at /dotrace.asp.

CVE-2022-34605 h3c vulnerability CVSS: 0 20 Jul 2022, 14:15 UTC

H3C Magic R200 R200V200R004L02 was discovered to contain a stack overflow via the HOST parameter at /dotrace.asp.

CVE-2022-34604 h3c vulnerability CVSS: 0 20 Jul 2022, 14:15 UTC

H3C Magic R200 R200V200R004L02 was discovered to contain a stack overflow via the INTF parameter at /dotrace.asp.

CVE-2022-34603 h3c vulnerability CVSS: 0 20 Jul 2022, 14:15 UTC

H3C Magic R200 R200V200R004L02 was discovered to contain a stack overflow via the DelDNSHnList interface at /goform/aspForm.

CVE-2022-34602 h3c vulnerability CVSS: 0 20 Jul 2022, 14:15 UTC

H3C Magic R200 R200V200R004L02 was discovered to contain a stack overflow via the ipqos_lanip_editlist interface at /goform/aspForm.

CVE-2022-34601 h3c vulnerability CVSS: 0 20 Jul 2022, 14:15 UTC

H3C Magic R200 R200V200R004L02 was discovered to contain a stack overflow via the Delstlist interface at /goform/aspForm.

CVE-2022-34600 h3c vulnerability CVSS: 0 20 Jul 2022, 14:15 UTC

H3C Magic R200 R200V200R004L02 was discovered to contain a stack overflow via the EditSTList interface at /goform/aspForm.

CVE-2022-34599 h3c vulnerability CVSS: 0 20 Jul 2022, 14:15 UTC

H3C Magic R200 R200V200R004L02 was discovered to contain a stack overflow via the EdittriggerList interface at /goform/aspForm.

CVE-2022-34598 h3c vulnerability CVSS: 7.5 06 Jul 2022, 17:15 UTC

The udpserver in H3C Magic R100 V200R004 and V100R005 has the 9034 port opened, allowing attackers to execute arbitrary commands.

CVE-2022-30926 h3c vulnerability CVSS: 10.0 08 Jun 2022, 14:15 UTC

H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the EditMacList parameter at /goform/aspForm.

CVE-2022-30925 h3c vulnerability CVSS: 10.0 08 Jun 2022, 14:15 UTC

H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the AddMacList parameter at /goform/aspForm.

CVE-2022-30924 h3c vulnerability CVSS: 10.0 08 Jun 2022, 14:15 UTC

H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the SetAPWifiorLedInfoById parameter at /goform/aspForm.

CVE-2022-30923 h3c vulnerability CVSS: 10.0 08 Jun 2022, 14:15 UTC

H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the Asp_SetTimingtimeWifiAndLed parameter at /goform/aspForm.

CVE-2022-30922 h3c vulnerability CVSS: 10.0 08 Jun 2022, 14:15 UTC

H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the EditWlanMacList parameter at /goform/aspForm.

CVE-2022-30921 h3c vulnerability CVSS: 10.0 08 Jun 2022, 14:15 UTC

H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the SetMobileAPInfoById parameter at /goform/aspForm.

CVE-2022-30920 h3c vulnerability CVSS: 10.0 08 Jun 2022, 14:15 UTC

H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the Edit_BasicSSID parameter at /goform/aspForm.

CVE-2022-30919 h3c vulnerability CVSS: 10.0 08 Jun 2022, 14:15 UTC

H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the Edit_BasicSSID_5G parameter at /goform/aspForm.

CVE-2022-30918 h3c vulnerability CVSS: 10.0 08 Jun 2022, 14:15 UTC

H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the Asp_SetTelnet parameter at /goform/aspForm.

CVE-2022-30917 h3c vulnerability CVSS: 10.0 08 Jun 2022, 14:15 UTC

H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the AddWlanMacList parameter at /goform/aspForm.

CVE-2022-30916 h3c vulnerability CVSS: 10.0 08 Jun 2022, 14:15 UTC

H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the Asp_SetTelnetDebug parameter at /goform/aspForm.

CVE-2022-30915 h3c vulnerability CVSS: 10.0 08 Jun 2022, 14:15 UTC

H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the UpdateSnat parameter at /goform/aspForm.

CVE-2022-30914 h3c vulnerability CVSS: 10.0 08 Jun 2022, 14:15 UTC

H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the UpdateMacClone parameter at /goform/aspForm.

CVE-2022-30913 h3c vulnerability CVSS: 10.0 08 Jun 2022, 14:15 UTC

H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the ipqos_set_bandwidth parameter at /goform/aspForm.

CVE-2022-30912 h3c vulnerability CVSS: 10.0 08 Jun 2022, 14:15 UTC

H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the UpdateWanParams parameter at /goform/aspForm.

CVE-2022-30910 h3c vulnerability CVSS: 10.0 08 Jun 2022, 14:15 UTC

H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the GO parameter at /goform/aspForm.

CVE-2022-30909 h3c vulnerability CVSS: 10.0 08 Jun 2022, 14:15 UTC

H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the CMD parameter at /goform/aspForm.

CVE-2022-28940 h3c vulnerability CVSS: 7.1 04 May 2022, 16:15 UTC

In H3C MagicR100 <=V100R005, the / Ajax / ajaxget interface can be accessed without authorization. It sends a large amount of data through ajaxmsg to carry out DOS attack.

CVE-2019-12193 h3c vulnerability CVSS: 7.5 19 Jul 2019, 16:15 UTC

H3C H3Cloud OS all versions allows SQL injection via the ear/grid_event sidx parameter.

CVE-2013-4840 h3c vulnerability CVSS: 7.8 28 Jul 2014, 17:55 UTC

Unspecified vulnerability in HP and H3C VPN Firewall Module products SECPATH1000FE before 5.20.R3177 and SECBLADEFW before 5.20.R3177 allows remote attackers to cause a denial of service via unknown vectors.