L01J20D

CVSS 5.3 - MEDIUM

Attack vector

ADJACENT_NETWORK

Attack complexity

HIGH

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

high complexity

nttdocomo

CWE-476

NVD

Published: 2019-02-13

Updated: 2019-02-15

Summary

V20 PRO L-01J software version L01J20c and L01J20d has a NULL pointer exception flaw that can be used by an attacker to cause the device to crash on the same network range via a specially crafted access point.

Vulnerable Configurations

Part	Description	Count
OS	Nttdocomo Nttdocomo V20 PRO L 01J Firmware L01J20C Nttdocomo V20 PRO L 01J Firmware L01J20D	2
Hardware	Nttdocomo Nttdocomo V20 PRO L 01J -	1

Common Weakness Enumeration (CWE)

CWE-476 - NULL Pointer Dereference

References

https://www.nttdocomo.co.jp/support/utilization/product_update/list/l01j/index.html
http://jvn.jp/en/jp/JVN40439414/index.html