Vulnerability Details CVE-2020-9098
Huawei OceanStor 5310 product with version of V500R007C60SPC100 has an invalid pointer access vulnerability. The software system access an invalid pointer when attacker malformed packet. Due to the insufficient validation of some parameter, successful exploit could cause device reboot.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 36.9%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 7.8
References
- http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200429-01-invalidpointer-en
- https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200429-01-invalidpointer-en
- http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200429-01-invalidpointer-en
- https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200429-01-invalidpointer-en
Products affected by CVE-2020-9098
-
cpe:2.3:h:huawei:oceanstor_5310:v5
-
cpe:2.3:o:huawei:oceanstor_5310_firmware:v500r007c60spc100