CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-9105

Taurus-AN00B versions earlier than 10.1.0.156(C00E155R7P2) have an insufficient input validation vulnerability. Due to the input validation logic is incorrect, an attacker can exploit this vulnerability to access and modify the memory of the device by doing a series of operations. Successful exploit may cause the service abnormal.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 5.6%

CVSS Severity

CVSS v3 Score 6.7

CVSS v2 Score 4.6

References

https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200923-01-outofbound-en
https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200923-01-outofbound-en

Products affected by CVE-2020-9105

Huawei » Taurus-An00b » Version: N/A

cpe:2.3:h:huawei:taurus-an00b:-
Huawei » Taurus-An00b Firmware » Version: 10.1.0.156

cpe:2.3:o:huawei:taurus-an00b_firmware:10.1.0.156

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-9105

Products

Pricing

Contact Us