1. Home
  2. CVE Database
  3. CVE-2020-1789
MEDIUM · 6.8

CVE-2020-1789

Huawei OSCA-550, OSCA-550A, OSCA-550AX, and OSCA-550X products with version 1.0.1.21(SP3) have an insufficient authentication vulnerability. The software does not require a strong credential when the ...

Vulnerability Description

Huawei OSCA-550, OSCA-550A, OSCA-550AX, and OSCA-550X products with version 1.0.1.21(SP3) have an insufficient authentication vulnerability. The software does not require a strong credential when the user trying to do certain operations. Successful exploit could allow an attacker to pass the authentication and do certain operations by a weak credential.

CVSS Score

6.8

MEDIUM

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack Vector
PHYSICAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
HIGH
Integrity
HIGH
Availability
HIGH

Affected Products

VendorProductVersions
HuaweiOsca-550 Firmware1.0.1.21\(sp3\)
HuaweiOsca-550-
HuaweiOsca-550A Firmware1.0.1.21\(sp3\)
HuaweiOsca-550A-
HuaweiOsca-550Ax Firmware1.0.1.21\(sp3\)
HuaweiOsca-550Ax-
HuaweiOsca-550X Firmware1.0.1.21\(sp3\)
HuaweiOsca-550X-

Related Weaknesses (CWE)

CWE-287

References

FAQ

What is CVE-2020-1789?

CVE-2020-1789 is a vulnerability with a CVSS score of 6.8 (MEDIUM). Huawei OSCA-550, OSCA-550A, OSCA-550AX, and OSCA-550X products with version 1.0.1.21(SP3) have an insufficient authentication vulnerability. The software does not require a strong credential when the ...

How severe is CVE-2020-1789?

CVE-2020-1789 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2020-1789?

Check the references section above for vendor advisories and patch information. Affected products include: Huawei Osca-550 Firmware, Huawei Osca-550, Huawei Osca-550A Firmware, Huawei Osca-550A, Huawei Osca-550Ax Firmware.