CVE-2020-9086

216.73.216.226

· Published 27/12/2024 10:15 · Modified 13/01/2025 19:34

Labels: CVE-2020-9086 2024-12-27 CVE-2020-9086 CWE-124 CWE-787 [email protected]

Essential information

Published: 27/12/2024 10:15
Modified: 13/01/2025 19:34
Author: —
Creator: —
CVSS: 4.3 MEDIUM (v3.1)
CISA KEV: No
CWE: —
CVSS vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

CVSS metrics

Description

There is a buffer error vulnerability in some Huawei product. An unauthenticated attacker may send special UPNP message to the affected products. Due to insufficient input validation of some value, successful exploit may cause some service abnormal. (Vulnerability ID: HWPSIRT-2017-08234) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2020-9086.

NVD status

Status: Analyzed — CVE has been recently published to the CVE List and has been received by the NVD.
Source: [email protected]
NVD: View on NVD

Affected products (CPE)

Product	CPE
huawei / b612 firmware	`cpe:2.3:o:huawei:b612_firmware:b612s-25dtcpu-v100r001b192d03sp00c234:::::::*`
huawei / b612 firmware	`cpe:2.3:o:huawei:b612_firmware:b612s-25dtcpu-v100r001b192d03sp00c287:::::::*`
huawei / b612 firmware	`cpe:2.3:o:huawei:b612_firmware:b612s-25dtcpu-v100r001b192d05sp00c00:::::::*`
huawei / b612	`cpe:2.3:h:huawei:b612:-:::::::*`