Out-of-Bounds Read and Write Vulnerability in Huawei Taurus-AN00B Device
CVE-2020-9091

5.5MEDIUM

Key Information:

Vendor
Huawei
Vendor
CVE Published:
12 October 2020

Summary

The Huawei Taurus-AN00B device is susceptible to an out-of-bounds read and write vulnerability that stems from insufficient input verification in certain functions. This flaw allows attackers to exploit the device by sending specifically crafted requests, potentially disrupting normal service operations.

Affected Version(s)

Taurus-AN00B Versions earlier than 10.1.0.156(C00E155R7P2)

References

CVSS V3.1

Score:
5.5
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.