Vulnerability Description
There is a buffer overflow vulnerability in some Huawei products. The vulnerability can be exploited by an attacker to perform remote code execution on the affected products when the affected product functions as an optical line terminal (OLT). Affected product versions include:SmartAX MA5600T versions V800R013C10, V800R015C00, V800R015C10, V800R017C00, V800R017C10, V800R018C00, V800R018C10; SmartAX MA5800 versions V100R017C00, V100R017C10, V100R018C00, V100R018C10, V100R019C10; SmartAX EA5800 versions V100R018C00, V100R018C10, V100R019C10.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Huawei | Smartax Ma5600T Firmware | v800r013c10 |
| Huawei | Smartax Ma5600T | - |
| Huawei | Smartax Ma5800 Firmware | v100r017c00 |
| Huawei | Smartax Ma5800 | - |
| Huawei | Smartax Ea5800 Firmware | v100r018c00 |
| Huawei | Smartax Ea5800 | - |
Related Weaknesses (CWE)
References
- https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200401-01-overflVendor Advisory
- https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200401-01-overflVendor Advisory
FAQ
What is CVE-2020-9067?
CVE-2020-9067 is a vulnerability with a CVSS score of 8.0 (HIGH). There is a buffer overflow vulnerability in some Huawei products. The vulnerability can be exploited by an attacker to perform remote code execution on the affected products when the affected product ...
How severe is CVE-2020-9067?
CVE-2020-9067 has been rated HIGH with a CVSS base score of 8.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-9067?
Check the references section above for vendor advisories and patch information. Affected products include: Huawei Smartax Ma5600T Firmware, Huawei Smartax Ma5600T, Huawei Smartax Ma5800 Firmware, Huawei Smartax Ma5800, Huawei Smartax Ea5800 Firmware.