Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2020-9069

There is an information leakage vulnerability in some Huawei products. An unauthenticated, adjacent attacker could exploit this vulnerability to decrypt data. Successful exploitation may leak information randomly. Affected product versions include: Anne-AL00 Versions earlier than 9.1.0.331(C675E9R1P3T8); Berkeley-L09 Versions earlier than 10.0.1.1(C675R1); CD16-10 Versions earlier than 10.0.2.8; CD17-10 Versions earlier than 10.0.2.8; CD17-16 Versions earlier than 10.0.2.8; CD18-10 Versions earlier than 10.0.2.8; CD18-16 Versions earlier than 10.0.2.8; Columbia-TL00B Versions earlier than 9.0.0.187(C01E181R1P20T8); E6878-370 Versions earlier than 10.0.5.1(H610SP10C00); HUAWEI P30 lite Versions earlier than 10.0.0.185(C605E3R1P3), Versions earlier than 10.0.0.197(C432E8R2P7); HUAWEI nova 4e Versions earlier than 10.0.0.158(C00E64R1P9); Honor 10 Lite 9.0.1.113(C675E11R1P12); LelandP-L22A Versions earlier than 9.1.0.166(C675E5R1P4T8); Marie-AL00AX Versions earlier than 10.0.0.158(C00E64R1P9); Marie-AL00AY Versions earlier than 10.0.0.158(C00E64R1P9); Marie-AL00BX Versions earlier than 10.0.0.158(C00E64R1P9); Marie-L03BX Versions earlier than 10.0.0.188(C605E5R1P1); Marie-L21BX Versions earlier than 10.0.0.188(C432E4R4P1), Versions earlier than 10.0.0.188(C461E5R3P1); Marie-L22BX Versions earlier than 10.0.0.188(C636E3R3P1); Marie-L23BX Versions earlier than 10.0.0.188(C605E5R1P1); TC5200-16 Versions earlier than 10.0.2.8; WS5200-11 Versions earlier than 10.0.2.8; WS5200-12 Versions earlier than 10.0.2.23; WS5200-16 Versions earlier than 10.0.2.8; WS5200-17 Versions earlier than 10.0.2.23; WS5800-10 Versions earlier than 10.0.3.27; WS6500-10 Versions earlier than 10.0.2.8; WS6500-16 Versions earlier than 10.0.2.8

Published

2020-05-21T15:15:10.123

Last Modified

2024-11-21T05:39:57.940

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 6.5 (MEDIUM)

CVSSv2 Vector

AV:A/AC:L/Au:N/C:P/I:N/A:N

  • Access Vector: ADJACENT_NETWORK
  • Access Complexity: LOW
  • Authentication: NONE
  • Confidentiality Impact: PARTIAL
  • Integrity Impact: NONE
  • Availability Impact: NONE
Exploitability Score

6.5

Impact Score

2.9

Weaknesses
  • Type: Primary
    NVD-CWE-noinfo
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Operating System huawei anne-al00_firmware < 9.1.0.331\(c675e9r1p3t8\) Yes
Hardware huawei anne-al00 - No
Operating System huawei berkeley-l09_firmware < 10.0.1.1\(c675r1\) Yes
Hardware huawei berkeley-l09 - No
Operating System huawei cd16-10_firmware < 10.0.2.8 Yes
Hardware huawei cd16-10 - No
Operating System huawei cd17-10_firmware < 10.0.2.8 Yes
Hardware huawei cd17-10 - No
Operating System huawei cd17-16_firmware < 10.0.2.8 Yes
Hardware huawei cd17-16 - No
Operating System huawei cd18-10_firmware < 10.0.2.8 Yes
Hardware huawei cd18-10 - No
Operating System huawei cd18-16_firmware < 10.0.2.8 Yes
Hardware huawei cd18-16 - No
Operating System huawei columbia-tl00b_firmware < 9.0.0.187\(c01e181r1p20t8\) Yes
Hardware huawei columbia-tl00b - No
Operating System huawei e6878-370_firmware < 10.0.5.1\(h610sp10c00\) Yes
Hardware huawei e6878-370 - No
Operating System huawei honor_10_lite_firmware < 10.0.0.182\(c675e17r2p2\) Yes
Hardware huawei honor_10_lite - No
Operating System huawei lelandp-l22a_firmware < 9.1.0.166\(c675e5r1p4t8\) Yes
Hardware huawei lelandp-l22a - No
Operating System huawei tc5200-16_firmware < 10.0.2.8 Yes
Hardware huawei tc5200-16 - No
Operating System huawei ws5200-11_firmware < 10.0.2.8 Yes
Hardware huawei ws5200-11 - No
Operating System huawei ws5200-11_firmware < 10.0.2.23 Yes
Hardware huawei ws5200-11 - No
Operating System huawei ws5200-16_firmware < 10.0.2.8 Yes
Hardware huawei ws5200-16 - No
Operating System huawei ws5200-17_firmware < 10.0.2.23 Yes
Hardware huawei ws5200-17 - No
Operating System huawei ws5800-10_firmware < 10.0.3.27 Yes
Hardware huawei ws5800-10 - No
Operating System huawei ws6500-10_firmware < 10.0.2.8 Yes
Hardware huawei ws6500-10 - No
Operating System huawei ws6500-16_firmware < 10.0.2.8 Yes
Hardware huawei ws6500-16 - No
References