Vulnerabilities > CVE-2020-9111 - Unspecified vulnerability in Huawei E6878-370 Firmware and E6878-870 Firmware

CVSS 4.5 - MEDIUM

Attack vector

ADJACENT_NETWORK

Attack complexity

LOW

Privileges required

HIGH

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

low complexity

huawei

NVD

Published: 2020-10-19

Updated: 2020-10-29

Summary

E6878-370 versions 10.0.3.1(H557SP27C233),10.0.3.1(H563SP21C233) and E6878-870 versions 10.0.3.1(H557SP27C233),10.0.3.1(H563SP11C233) have a denial of service vulnerability. The system does not properly check some events, an attacker could launch the events continually, successful exploit could cause reboot of the process.

Vulnerable Configurations

Part	Description	Count
OS	Huawei Huawei E6878 370 Firmware 10.0.3.1\(H557Sp27C233\) Huawei E6878 370 Firmware 10.0.3.1\(H563Sp21C233\) Huawei E6878 870 Firmware 10.0.3.1\(H557Sp27C233\) Huawei E6878 870 Firmware 10.0.3.1\(H563Sp11C233\)	4
Hardware	Huawei Huawei E6878 370 - Huawei E6878 870 -	2

References

https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20201014-02-dos-en