CVE-2020-9212Huawei Usg9500 Firmware vulnerability

3 documents3 sources
Severity
6.5MEDIUMNVD
EPSS
0.2%
top 63.99%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Huawei Usg9500 Firmware
Timeline
PublishedMar 22
Latest updateMay 24

Description

There is a vulnerability in some version of USG9500 that the device improperly handles the information when a user logs in to device. The attacker can exploit the vulnerability to perform some operation and can get information and cause information leak.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:NExploitability: 2.8 | Impact: 3.6

Affected Packages2 packages

CVEListV5huawei/usg9500_firmwareV500R005C00SPC100,V500R005C00SPC200,V500R005C20SPC300,V500R005C20SPC500,V500R005C20SPC600
NVDhuawei/usg9500_firmware5 versions+4

🔴Vulnerability Details

2
GHSA
GHSA-j7jq-74cp-fg2v: There is a vulnerability in some version of USG9500 that the device improperly handles the information when a user logs in to device2022-05-24
CVEList
CVE-2020-9212: There is a vulnerability in some version of USG9500 that the device improperly handles the information when a user logs in to device2021-03-22
CVE-2020-9212 — Huawei Usg9500 Firmware vulnerability | cvebase