1. Home
  2. CVE Database
  3. CVE-2020-9122
MEDIUM · 6.5

CVE-2020-9122

Some Huawei products have an insufficient input verification vulnerability. Attackers can exploit this vulnerability in the LAN to cause service abnormal on affected devices.Affected product versions ...

Vulnerability Description

Some Huawei products have an insufficient input verification vulnerability. Attackers can exploit this vulnerability in the LAN to cause service abnormal on affected devices.Affected product versions include:HiRouter-CD30-10 version 10.0.2.5;HiRouter-CT31-10 version 10.0.2.20;WS5200-12 version 10.0.1.9;WS5281-10 version 10.0.5.10;WS5800-10 version 10.0.3.25;WS7100-10 version 10.0.5.21;WS7200-10 version 10.0.5.21.

CVSS Score

6.5

MEDIUM

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Attack Vector
ADJACENT_NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
NONE
Integrity
NONE
Availability
HIGH

Affected Products

VendorProductVersions
HuaweiHirouter-Cd30-10 Firmware>= 10.0.2.5, < 10.0.5.7
HuaweiHirouter-Cd30-10-
HuaweiHirouter-Ct31-10 Firmware>= 10.0.2.20, < 10.0.2.37
HuaweiHirouter-Ct31-10-
HuaweiWs5200-12 Firmware>= 10.0.1.9, <= 10.0.5.6
HuaweiWs5200-12-
HuaweiWs5281-10 Firmware>= 10.0.5.10, < 10.0.5.32
HuaweiWs5281-10-
HuaweiWs5800-10 Firmware>= 10.0.3.25, < 10.0.3.33
HuaweiWs5800-10-
HuaweiWs7100-10 Firmware>= 10.0.5.21, < 10.0.5.37
HuaweiWs7100-10-
HuaweiWs7200-10 Firmware>= 10.0.5.21, < 10.0.5.37
HuaweiWs7200-10-

Related Weaknesses (CWE)

CWE-20

References

FAQ

What is CVE-2020-9122?

CVE-2020-9122 is a vulnerability with a CVSS score of 6.5 (MEDIUM). Some Huawei products have an insufficient input verification vulnerability. Attackers can exploit this vulnerability in the LAN to cause service abnormal on affected devices.Affected product versions ...

How severe is CVE-2020-9122?

CVE-2020-9122 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2020-9122?

Check the references section above for vendor advisories and patch information. Affected products include: Huawei Hirouter-Cd30-10 Firmware, Huawei Hirouter-Cd30-10, Huawei Hirouter-Ct31-10 Firmware, Huawei Hirouter-Ct31-10, Huawei Ws5200-12 Firmware.