CVE-2025-5162

Medium CVSS: 5.3

A vulnerability, which was classified as critical, has been found in H3C SecCenter SMP-E1114P02 up to 20250513. Affected by this issue is some unknown functionality of the file /safeEvent/importFile/. The manipulation of the argument logGeneralFile/logGeneralFile_2 leads to unrestricted upload. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Vendor

H3c

Product

Seccenter Smp-1114p02

CWE

CWE-284

Yayın Tarihi

2025-05-26 01:15:21

Güncelleme

2025-06-03 15:39:22

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-284 Seccenter Smp-1114p02 MEDIUM H3c 2025

Referanslar

https://flowus.cn/share/ce6c4094-8d97-466c-8fcc-df3f3d6f314e?code=G8A6P3 https://flowus.cn/share/d6c310ac-a179-499f-9e9a-5c0de80b19be?code=G8A6P3 https://vuldb.com/?ctiid.310250 https://vuldb.com/?id.310250 https://vuldb.com/?submit.578679

Benzer Kayıtlar

High

CVE-2026-3701

A security vulnerability has been detected in H3C Magic B1 up to 100R004. Affected by this vulnerability is the function…

Critical

CVE-2025-60262

An issue in H3C M102G HM1A0V200R010 wireless controller and BA1500L SWBA1A0V100R006 wireless access point, there is a mi…

High

CVE-2025-14015

A weakness has been identified in H3C Magic B0 up to 100R002. This impacts the function EditWlanMacList of the file /gof…

High

CVE-2025-57295

H3C devices running firmware version NX15V100R015 are vulnerable to unauthorized access due to insecure default credenti…

High

CVE-2025-44653

In H3C GR2200 MiniGR1A0V100R016, the USERLIMIT_GLOBAL option is set to 0 in the /etc/bftpd.conf. This can cause DoS atta…

Medium

CVE-2025-5161

A vulnerability classified as problematic was found in H3C SecCenter SMP-E1114P02 up to 20250513. Affected by this vulne…