First published: Sun Apr 02 2017(Updated: )
Huawei USG9500 with software V200R001C01SPC800 and earlier versions, V300R001C00; USG2100 with software V300R001C00SPC900 and earlier versions; USG2200 with software V300R001C00SPC900; USG5100 with software V300R001C00SPC900 could allow an unauthenticated, remote attacker to conduct a CSRF attack against the user of the web interface.
Credit: psirt@huawei.com
Affected Software | Affected Version | How to fix |
---|---|---|
Huawei FusionManager | =v100r002c03 | |
Huawei FusionManager | =v100r003c00 | |
Huawei Usg9500 Firmware | <=v200r001c01spc800 | |
Huawei Usg9500 Firmware | =v300r001c00 | |
Huawei USG9500 | ||
Huawei Usg2100 Firmware | <=v300r001c00spc900 | |
Huawei USG2100 | ||
Huawei Usg2200 Firmware | <=v300r001c00spc900 | |
Huawei Usg2200 | ||
Huawei Usg5100 Firmware | <=v300r001c00spc900 | |
Huawei Usg5100 | ||
Huawei Usg5500 Firmware | <=v300r001c00spc900 | |
Huawei USG5500 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.