CVE-2020-9212

Published: Mar 22, 2021Modified: Nov 21, 2024

6.5

Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Exploitability: 2.8 / Impact: 3.6

Source: NVD

Description

There is a vulnerability in some version of USG9500 that the device improperly handles the information when a user logs in to device. The attacker can exploit the vulnerability to perform some operation and can get information and cause information leak.

Affected (5)

Products: Huawei: Usg9500 Firmware

Huawei

1 product

Usg9500 Firmware

Configuration A

5 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Huawei Usg9500 Firmware	Version v500r005c00spc100
Huawei Usg9500 Firmware	Version v500r005c00spc200
Huawei Usg9500 Firmware	Version v500r005c20spc300
Huawei Usg9500 Firmware	Version v500r005c20spc500
Huawei Usg9500 Firmware	Version v500r005c20spc600

Running on/with	Platform Versions
Huawei Usg9500	All versions

References (2)

https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20210203-01-informationleak-en

Source: psirt@huawei.com

Vendor Advisory

https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20210203-01-informationleak-en

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.