Out-of-Bounds Read Vulnerability in Huawei AR120-S Products
CVE-2020-9071
Key Information:
- Vendor
- Huawei
- Vendor
- CVE Published:
- 1 June 2020
Summary
An out-of-bounds read vulnerability exists within specific Huawei AR120-S products. The issue arises when the software processes certain messages, resulting in data being read beyond the intended buffer limit. This flaw can potentially be exploited by an authenticated attacker who sends carefully crafted messages to the affected device. If successfully executed, this exploit may lead to abnormal service behavior under specific conditions.
Affected Version(s)
AR120-S;AR1200;AR1200-S;AR150;AR150-S;AR160;AR200;AR200-S;AR2200;AR2200-S;AR3200;AR3600;AR510;NetEngine16EX;SRG1300;SRG2300;SRG3300 V200R007C00SPC900,V200R007C00SPCa00,V200R007C00SPCb00,V200R007C00SPCc00
AR120-S;AR1200;AR1200-S;AR150;AR150-S;AR160;AR200;AR200-S;AR2200;AR2200-S;AR3200;AR3600;AR510;NetEngine16EX;SRG1300;SRG2300;SRG3300 V200R007C00SPC900,V200R007C00SPC900PWE,V200R007C00SPCa00,V200R007C00SPCb00,V200R007C00SPCb00PWE,V200R007C00SPCc00
AR120-S;AR1200;AR1200-S;AR150;AR150-S;AR160;AR200;AR200-S;AR2200;AR2200-S;AR3200;AR3600;AR510;NetEngine16EX;SRG1300;SRG2300;SRG3300 V200R007C00SPC900,V200R007C00SPCb00,V200R007C00SPCc00
References
CVSS V3.1
Timeline
Vulnerability published
Vulnerability Reserved