Denial of Service Vulnerability in Huawei E6878 Series Products
CVE-2020-9111

4.5MEDIUM

Key Information:

Vendor: Huawei
Status: E6878-370;e6878-870
Vendor: CVE Published:; 19 October 2020

Summary

The Huawei E6878-370 and E6878-870 series products are susceptible to a denial of service vulnerability wherein improper event checks allow an attacker to trigger continuous events. Exploitation of this flaw could result in a reboot of the affected service, severely impacting system availability and performance.

Affected Version(s)

E6878-370;E6878-870 10.0.3.1(H557SP27C233),10.0.3.1(H563SP21C233)

E6878-370;E6878-870 10.0.3.1(H557SP27C233),10.0.3.1(H563SP11C233)

References

https://www.huawei.com/en/psirt/security-advisories/huawe...

x_refsource_MISC

CVSS V3.1

Score:

4.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Oct 19, 2020
Vulnerability Reserved
Feb 18, 2020