Buffer Overflow Vulnerability in Taurus-AN00B Device from Huawei
CVE-2020-9238

6.5MEDIUM

Key Information:

Vendor

Huawei
Status
Taurus-an00b
Vendor
CVE Published:
12 October 2020

What is CVE-2020-9238?

The Taurus-AN00B devices from Huawei have a vulnerability resulting from inadequate input validation within a module, which can lead to a buffer overflow. This weakness allows attackers to send specially crafted requests that exploit the flaw, potentially disrupting the normal operation of the device and posing a risk to the device's integrity.

Affected Version(s)

Taurus-AN00B Versions earlier than 10.1.0.156(C00E155R7P2)

References

https://www.huawei.com/en/psirt/security-advisories/huawe...
x_refsource_MISC

CVSS V3.1

Score:
6.5
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Adjacent Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.