CVE-2020-9086
4.3
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Summary
There is a buffer error vulnerability in some Huawei product. An unauthenticated attacker may send special UPNP message to the affected products. Due to insufficient input validation of some value, successful exploit may cause some service abnormal. (Vulnerability ID: HWPSIRT-2017-08234)
This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2020-9086.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Huawei | HUAWEI 4G Router B612 | B612s-25dTCPU-V100R001B192D03SP00C234 | affected |
| Huawei | HUAWEI 4G Router B612 | B612s-25dTCPU-V100R001B192D03SP00C287 | affected |
| Huawei | HUAWEI 4G Router B612 | B612s-25dTCPU-V100R001B192D05SP00C00 | affected |
Weaknesses
- CWE-124: CWE-124 Buffer Underwrite ('Buffer Underflow')
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.