HIGH🇵🇱 Wersja polska

CVE-2020-9241

CVSS 7.0v3.1pub. 2020-08-17upd. 2024-11-21

Huawei 5G Mobile WiFi E6878-370 with versions of 10.0.3.1(H563SP1C00),10.0.3.1(H563SP21C233) have an improper authorization vulnerability. The device does not restrict certain data received from WAN port. Successful exploit could allow an attacker at WAN side to manage certain service of the device.

CVSS Vector
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H
  • Huawei E6878 370

    HW
    Huawei
    wszystkie wersje
  • Huawei E6878 370 Firmware

    OS
    Huawei
    10.0.3.1\(h563sp1c00\)10.0.3.1\(h563sp21c233\)
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2020-1832HIGH8.8ten sam produkt

E6878-370 products with versions of 10.0.3.1(H557SP27C233) and 10.0.3.1(H563SP1C00) have a stack buffer overfl...

CVE-2020-1799HIGH7.5ten sam produkt

E6878-370 with versions of 10.0.3.1(H557SP27C233), 10.0.3.1(H563SP1C00), 10.0.3.1(H563SP1C233) has a use after...

CVE-2020-9111MEDIUM4.5ten sam produkt

E6878-370 versions 10.0.3.1(H557SP27C233),10.0.3.1(H563SP21C233) and E6878-870 versions 10.0.3.1(H557SP27C233)...

CVE-2020-9069MEDIUM6.5ten sam produkt

There is an information leakage vulnerability in some Huawei products. An unauthenticated, adjacent attacker c...

CVE-2019-0708CRITICAL9.8⚠ KEVten sam vendor

A remote code execution vulnerability exists in Remote Desktop Services formerly known as Terminal Services wh...