1. Home
  2. CVE Database
  3. CVE-2020-9094
HIGH · 7.5

CVE-2020-9094

There is an out of bound read vulnerability in some verisons of Huawei CloudEngine product. A module does not deal with specific message properly. Attackers can exploit this vulnerability by sending m...

Vulnerability Description

There is an out of bound read vulnerability in some verisons of Huawei CloudEngine product. A module does not deal with specific message properly. Attackers can exploit this vulnerability by sending malicious packet. This can lead to denial of service.

CVSS Score

7.5

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
NONE
Integrity
NONE
Availability
HIGH

Affected Products

VendorProductVersions
HuaweiCloudengine 12800 Firmwarev200r019c00spc800
HuaweiCloudengine 12800-
HuaweiCloudengine 5800 Firmwarev200r019c00spc800
HuaweiCloudengine 5800-
HuaweiCloudengine 6800 Firmwarev200r005c20spc800
HuaweiCloudengine 6800-
HuaweiCloudengine 7800 Firmwarev200r019c00spc800
HuaweiCloudengine 7800-

Related Weaknesses (CWE)

CWE-125

References

FAQ

What is CVE-2020-9094?

CVE-2020-9094 is a vulnerability with a CVSS score of 7.5 (HIGH). There is an out of bound read vulnerability in some verisons of Huawei CloudEngine product. A module does not deal with specific message properly. Attackers can exploit this vulnerability by sending m...

How severe is CVE-2020-9094?

CVE-2020-9094 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2020-9094?

Check the references section above for vendor advisories and patch information. Affected products include: Huawei Cloudengine 12800 Firmware, Huawei Cloudengine 12800, Huawei Cloudengine 5800 Firmware, Huawei Cloudengine 5800, Huawei Cloudengine 6800 Firmware.