Home

Description

There is a NULL pointer dereference vulnerability in some Huawei products. An attacker may send specially crafted POST messages to the affected products. Due to insufficient validation of some parameter in the message, successful exploit may cause some process abnormal. (Vulnerability ID: HWPSIRT-2017-10105) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2020-9085.

PUBLISHED Reserved 2020-02-18 | Published 2024-12-27 | Updated 2024-12-27 | Assigner huawei




MEDIUM: 5.3CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Problem types

CWE-476 NULL Pointer Dereference

Product status

Default status
unaffected

B612s-25dTCPU-V100R001B192D03SP00C234
affected

B612s-25dTCPU-V100R001B192D03SP00C287
affected

B612s-25dTCPU-V100R001B192D05SP00C00
affected

References

www.huawei.com/...dvisories/huawei-sa-20200826-01-pointer_en

cve.org (CVE-2020-9085)

nvd.nist.gov (CVE-2020-9085)

Download JSON