CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-9085

There is a NULL pointer dereference vulnerability in some Huawei products. An attacker may send specially crafted POST messages to the affected products. Due to insufficient validation of some parameter in the message, successful exploit may cause some process abnormal. (Vulnerability ID: HWPSIRT-2017-10105) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2020-9085.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 18.6%

CVSS Severity

CVSS v3 Score 5.3

References

https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200826-01-pointer_en

Products affected by CVE-2020-9085

Huawei » B612 » Version: N/A

cpe:2.3:h:huawei:b612:-
Huawei » B612 Firmware » Version: b612s-25dtcpu-v100r001b192d03sp00c234

cpe:2.3:o:huawei:b612_firmware:b612s-25dtcpu-v100r001b192d03sp00c234
Huawei » B612 Firmware » Version: b612s-25dtcpu-v100r001b192d03sp00c287

cpe:2.3:o:huawei:b612_firmware:b612s-25dtcpu-v100r001b192d03sp00c287
Huawei » B612 Firmware » Version: b612s-25dtcpu-v100r001b192d05sp00c00

cpe:2.3:o:huawei:b612_firmware:b612s-25dtcpu-v100r001b192d05sp00c00

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-9085

Products

Pricing

Contact Us