Multiple vulnerabilities in some Huawei Products
| Risk | Medium |
| Patch available | YES |
| Number of vulnerabilities | 3 |
| CVE-ID | CVE-2020-9102 CVE-2020-9094 CVE-2020-9207 |
| CWE-ID | CWE-200 CWE-125 CWE-287 |
| Exploitation vector | Network |
| Public exploit | N/A |
| Vulnerable software |
Huawei CloudEngine 12800 Hardware solutions / Firmware Huawei CloudEngine 5800 Hardware solutions / Routers & switches, VoIP, GSM, etc Huawei CloudEngine 6800 Hardware solutions / Routers & switches, VoIP, GSM, etc Huawei CloudEngine 7800 Hardware solutions / Routers & switches, VoIP, GSM, etc |
| Vendor | Huawei |
Security Bulletin
This security bulletin contains information about 3 vulnerabilities.
Updated 17.12.2020
Added vulnerabilities #2-3
Severity changed to Medium.
1) Information disclosure
EUVDB-ID: #VU30119
Risk: Low
CVSSv4.0: 0.5 [CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2020-9102
CWE-ID:
CWE-200 - Information exposure
Exploit availability: No
DescriptionThe vulnerability allows a local attacker to gain access to potentially sensitive information.
The vulnerability exists due to the improper management of the username. A local attacker can gain unauthorized access to sensitive information on the system.
MitigationInstall updates from vendor's website.
Vulnerable software versionsHuawei CloudEngine 12800: V200R002C50SPC800 - V200R019C00SPC800
Huawei CloudEngine 5800: V200R002C50SPC800 - V200R019C00SPC800
Huawei CloudEngine 6800: V200R002C50SPC800 - V200R019C00SPC800
Huawei CloudEngine 7800: V200R002C50SPC800 - V200R019C00SPC800
CPE2.3- cpe:2.3:h:huawei:huawei_cloudengine_12800:V200R002C50SPC800:*:*:*:*:*:*:*
- cpe:2.3:h:huawei:huawei_cloudengine_12800:V200R003C00SPC810:*:*:*:*:*:*:*
- cpe:2.3:h:huawei:huawei_cloudengine_12800:V200R005C00SPC800:*:*:*:*:*:*:*
- cpe:2.3:h:huawei:huawei_cloudengine_5800:V200R002C50SPC800:*:*:*:*:*:*:*
- cpe:2.3:h:huawei:huawei_cloudengine_5800:V200R003C00SPC810:*:*:*:*:*:*:*
- cpe:2.3:h:huawei:huawei_cloudengine_5800:V200R005C00SPC800:*:*:*:*:*:*:*
- cpe:2.3:h:huawei:huawei_cloudengine_6800:V200R002C50SPC800:*:*:*:*:*:*:*
- cpe:2.3:h:huawei:huawei_cloudengine_6800:V200R003C00SPC810:*:*:*:*:*:*:*
- cpe:2.3:h:huawei:huawei_cloudengine_6800:V200R005C00SPC800:*:*:*:*:*:*:*
- cpe:2.3:h:huawei:huawei_cloudengine_7800:V200R002C50SPC800:*:*:*:*:*:*:*
https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200715-03-informationleak-en
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
2) Out-of-bounds read
EUVDB-ID: #VU49046
Risk: Medium
CVSSv4.0: 2.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2020-9094
CWE-ID:
CWE-125 - Out-of-bounds read
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to a boundary condition when a module does not deal with specific message properly. A remote attacker can send a malicious packet, trigger out-of-bounds read error and cause a denial of service condition on the system.
MitigationInstall updates from vendor's website.
Vulnerable software versionsHuawei CloudEngine 12800: V200R019C00SPC800
Huawei CloudEngine 5800: V200R019C00SPC800
Huawei CloudEngine 6800: V200R005C20SPC800 - V200R019C00SPC800
Huawei CloudEngine 7800: V200R019C00SPC800
CPE2.3- cpe:2.3:h:huawei:huawei_cloudengine_12800:V200R019C00SPC800:*:*:*:*:*:*:*
- cpe:2.3:h:huawei:huawei_cloudengine_5800:V200R019C00SPC800:*:*:*:*:*:*:*
- cpe:2.3:h:huawei:huawei_cloudengine_6800:V200R005C20SPC800:*:*:*:*:*:*:*
- cpe:2.3:h:huawei:huawei_cloudengine_6800:V200R019C00SPC800:*:*:*:*:*:*:*
- cpe:2.3:h:huawei:huawei_cloudengine_7800:V200R019C00SPC800:*:*:*:*:*:*:*
https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20201216-01-obr-en
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
3) Improper Authentication
EUVDB-ID: #VU49047
Risk: Medium
CVSSv4.0: 4.8 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2020-9207
CWE-ID:
CWE-287 - Improper Authentication
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to bypass authentication process.
The vulnerability exists due to a module does not verify the input file properly. A remote attacker can send specially crafted files to bypass current verification mechanism.
MitigationInstall updates from vendor's website.
Vulnerable software versionsHuawei CloudEngine 12800: V200R019C00SPC800
Huawei CloudEngine 5800: V200R019C00SPC800
Huawei CloudEngine 6800: V200R005C20SPC800 - V200R019C00SPC800
Huawei CloudEngine 7800: V200R019C00SPC800
CPE2.3- cpe:2.3:h:huawei:huawei_cloudengine_12800:V200R019C00SPC800:*:*:*:*:*:*:*
- cpe:2.3:h:huawei:huawei_cloudengine_5800:V200R019C00SPC800:*:*:*:*:*:*:*
- cpe:2.3:h:huawei:huawei_cloudengine_6800:V200R005C20SPC800:*:*:*:*:*:*:*
- cpe:2.3:h:huawei:huawei_cloudengine_6800:V200R019C00SPC800:*:*:*:*:*:*:*
- cpe:2.3:h:huawei:huawei_cloudengine_7800:V200R019C00SPC800:*:*:*:*:*:*:*
https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20201216-01-vrp-en
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
