CVE-2020-9241
Summary
| CVE | CVE-2020-9241 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2020-08-17 16:15:00 UTC |
| Updated | 2021-07-21 11:39:00 UTC |
| Description | Huawei 5G Mobile WiFi E6878-370 with versions of 10.0.3.1(H563SP1C00),10.0.3.1(H563SP21C233) have an improper authorization vulnerability. The device does not restrict certain data received from WAN port. Successful exploit could allow an attacker at WAN side to manage certain service of the device. |
Risk And Classification
Problem Types: NVD-CWE-noinfo
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Hardware | Huawei | E6878-370 | - | All | All | All |
| Hardware | Huawei | E6878-370 | - | All | All | All |
| Operating System | Huawei | E6878-370 Firmware | 10.0.3.1\(h563sp1c00\) | All | All | All |
| Operating System | Huawei | E6878-370 Firmware | 10.0.3.1\(h563sp21c233\) | All | All | All |
| Operating System | Huawei | E6878-370 Firmware | 10.0.3.1\(h563sp1c00\) | All | All | All |
| Operating System | Huawei | E6878-370 Firmware | 10.0.3.1\(h563sp21c233\) | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Security Advisory - Improper Authorization Vulnerability in Several Products | MISC | www.huawei.com | Vendor Advisory |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.