CVE-2020-9098
 
Severity Score
7.5
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Huawei OceanStor 5310 product with version of V500R007C60SPC100 has an invalid pointer access vulnerability. The software system access an invalid pointer when attacker malformed packet. Due to the insufficient validation of some parameter, successful exploit could cause device reboot.
El producto Huawei OceanStor 5310 con versión V500R007C60SPC100, tiene una vulnerabilidad de acceso de puntero no válido. El sistema de software accede a un puntero no válido al momento de un paquete malformado por el atacante. Debido a la comprobación insuficiente de algún parámetro, una explotación con éxito podría causar el reinicio del dispositivo.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2020-02-18 CVE Reserved
- 2020-04-30 CVE Published
- 2023-03-07 EPSS Updated
- 2024-08-04 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-763: Release of Invalid Pointer or Reference
CAPEC
References (2)
URL | Tag | Source |
---|
URL | Date | SRC |
---|
URL | Date | SRC |
---|
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Huawei Search vendor "Huawei" | Oceanstor 5310 Firmware Search vendor "Huawei" for product "Oceanstor 5310 Firmware" | v500r007c60spc100 Search vendor "Huawei" for product "Oceanstor 5310 Firmware" and version "v500r007c60spc100" | - |
Affected
| in | Huawei Search vendor "Huawei" | Oceanstor 5310 Search vendor "Huawei" for product "Oceanstor 5310" | v5 Search vendor "Huawei" for product "Oceanstor 5310" and version "v5" | - |
Safe
|