CVE-2020-9086

MEDIUM

4.3

Descricao

There is a buffer error vulnerability in some Huawei product. An unauthenticated attacker may send special UPNP message to the affected products. Due to insufficient input validation of some value, successful exploit may cause some service abnormal. (Vulnerability ID: HWPSIRT-2017-08234) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2020-9086.

Detalhes CVE

Pontuacao CVSS v3.14.3

SeveridadeMEDIUM

Vetor CVSSCVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Vetor de ataqueADJACENT_NETWORK

ComplexidadeLOW

Privilegios necessariosNONE

Interacao do usuarioNONE

Publicado12/27/2024

Ultima modificacao1/13/2025

Fontenvd

Avistamentos honeypot0

Produtos afetados

huawei:b612huawei:b612_firmware

Fraquezas (CWE)

CWE-124CWE-787

Referencias

https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200826-01-buffer_en(psirt@huawei.com)

Correlacoes IOC

Sem correlacoes registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.