CVE-2020-9240

CWE-120Classic Buffer Overflow3 documents3 sources
Severity
5.5MEDIUM
EPSS
0.0%
top 93.06%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Huawei Taurus-an00b Firmware
Timeline
PublishedOct 12
Latest updateMay 24

Description

Taurus-AN00B versions earlier than 10.1.0.156(C00E155R7P2) have a buffer overflow vulnerability. A function in a module does not verify inputs sufficiently. Attackers can exploit this vulnerability by sending specific request. This could compromise normal service of the affected device.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages2 packages

CVEListV5taurus-an00bVersions earlier than 10.1.0.156(C00E155R7P2)

🔴Vulnerability Details

2
GHSA
GHSA-xwgg-qxmh-jr24: Taurus-AN00B versions earlier than 102022-05-24
CVEList
CVE-2020-9240: Taurus-AN00B versions earlier than 102020-10-12
CVE-2020-9240 (MEDIUM CVSS 5.5) | Taurus-AN00B versions earlier than | cvebase.io