Lucene search

HuaweiCVE-2020-36602

HistorySep 20, 2022 - 8:15 p.m.

CVE-2020-36602

2022-09-2020:15:09

CWE-787

CWE-125

huawei

web.nvd.nist.gov

headset

vulnerability

out-of-bounds

exploit

nvd

CVSS3

6.1

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

AI Score

6.2

Confidence

High

EPSS

0.001

Percentile

26.4%

JSON

There is an out-of-bounds read and write vulnerability in some headset products. An unauthenticated attacker gets the device physically and crafts malformed message with specific parameter and sends the message to the affected products. Due to insufficient validation of message, which may be exploited to cause out-of-bounds read and write.

Affected configurations

Nvd

Vulners

Node

huawei576up005_hota-cm-h-shark-bdMatch-

AND

huawei576up005_hota-cm-h-shark-bd_firmwareMatch1.0.0.576

Node

huawei577hota-cm-h-shark-bdMatch-

AND

huawei577hota-cm-h-shark-bd_firmwareMatch1.0.0.577

Node

huawei581up-hota-cm-h-shark-bdMatch-

AND

huawei581up-hota-cm-h-shark-bd_firmwareMatch1.0.0.581

Node

huawei586-hota-cm-h-shark-bdMatch-

AND

huawei586-hota-cm-h-shark-bd_firmwareMatch1.0.0.586

Node

huawei588-hota-cm-h-shark-bdMatch-

AND

huawei588-hota-cm-h-shark-bd_firmwareMatch1.0.0.588

Node

huawei606-hota-cm-h-shark-bdMatch-

AND

huawei606-hota-cm-h-shark-bd_firmwareMatch1.0.0.606

Node

huaweibi-acc-reportMatch-

AND

huaweibi-acc-report_firmwareMatch1.0.0.1

huaweibi-acc-report_firmwareMatch1.0.0.2

huaweibi-acc-report_firmwareMatch1.0.0.3

huaweibi-acc-report_firmwareMatch1.0.0.4

huaweibi-acc-report_firmwareMatch1.0.0.5

Node

huaweicm-h-shark-bdMatch-

AND

huaweicm-h-shark-bd_firmwareMatch1.0.0.66\(vn2-sp11\)

huaweicm-h-shark-bd_firmwareMatch1.0.0.66\(vn2-sp15\)

huaweicm-h-shark-bd_firmwareMatch1.0.0.66\(vn2-sp17\)

huaweicm-h-shark-bd_firmwareMatch1.0.0.66\(vn2-sp21\)

huaweicm-h-shark-bd_firmwareMatch1.0.0.66\(vn2-sp27\)

huaweicm-h-shark-bd_firmwareMatch1.0.0.66\(vn2-sp29\)

huaweicm-h-shark-bd_firmwareMatch1.0.0.66\(vn2-sp31\)

huaweicm-h-shark-bd_firmwareMatch1.0.0.66\(vn2-sp33\)

huaweicm-h-shark-bd_firmwareMatch1.0.0.106

huaweicm-h-shark-bd_firmwareMatch1.0.0.116

huaweicm-h-shark-bd_firmwareMatch1.0.0.202

huaweicm-h-shark-bd_firmwareMatch1.0.0.208

huaweicm-h-shark-bd_firmwareMatch1.0.0.216

huaweicm-h-shark-bd_firmwareMatch1.0.0.226

huaweicm-h-shark-bd_firmwareMatch1.0.0.228

huaweicm-h-shark-bd_firmwareMatch1.0.0.510

huaweicm-h-shark-bd_firmwareMatch1.0.0.520

huaweicm-h-shark-bd_firmwareMatch1.0.0.522

huaweicm-h-shark-bd_firmwareMatch1.0.0.566

huaweicm-h-shark-bd_firmwareMatch1.0.0.576

huaweicm-h-shark-bd_firmwareMatch1.0.0.578

huaweicm-h-shark-bd_firmwareMatch1.0.0.586

huaweicm-h-shark-bd_firmwareMatch1.0.0.588

huaweicm-h-shark-bd_firmwareMatch1.9.0.208

huaweicm-h-shark-bd_firmwareMatch1.9.0.216

huaweicm-h-shark-bd_firmwareMatch1.9.0.226

huaweicm-h-shark-bd_firmwareMatch1.9.0.228

huaweicm-h-shark-bd_firmwareMatch1.9.0.510

huaweicm-h-shark-bd_firmwareMatch1.9.0.520

huaweicm-h-shark-bd_firmwareMatch1.9.0.522

huaweicm-h-shark-bd_firmwareMatch1.9.0.566

huaweicm-h-shark-bd_firmwareMatch1.9.0.578

huaweicm-h-shark-bd_firmwareMatch1.9.0.586

huaweicm-h-shark-bd_firmwareMatch1.9.0.588

VendorProductVersionCPE
huawei576up005_hota-cm-h-shark-bd-cpe:2.3:h:huawei:576up005_hota-cm-h-shark-bd:-:*:*:*:*:*:*:*
huawei576up005_hota-cm-h-shark-bd_firmware1.0.0.576cpe:2.3:o:huawei:576up005_hota-cm-h-shark-bd_firmware:1.0.0.576:*:*:*:*:*:*:*
huawei577hota-cm-h-shark-bd-cpe:2.3:h:huawei:577hota-cm-h-shark-bd:-:*:*:*:*:*:*:*
huawei577hota-cm-h-shark-bd_firmware1.0.0.577cpe:2.3:o:huawei:577hota-cm-h-shark-bd_firmware:1.0.0.577:*:*:*:*:*:*:*
huawei581up-hota-cm-h-shark-bd-cpe:2.3:h:huawei:581up-hota-cm-h-shark-bd:-:*:*:*:*:*:*:*
huawei581up-hota-cm-h-shark-bd_firmware1.0.0.581cpe:2.3:o:huawei:581up-hota-cm-h-shark-bd_firmware:1.0.0.581:*:*:*:*:*:*:*
huawei586-hota-cm-h-shark-bd-cpe:2.3:h:huawei:586-hota-cm-h-shark-bd:-:*:*:*:*:*:*:*
huawei586-hota-cm-h-shark-bd_firmware1.0.0.586cpe:2.3:o:huawei:586-hota-cm-h-shark-bd_firmware:1.0.0.586:*:*:*:*:*:*:*
huawei588-hota-cm-h-shark-bd-cpe:2.3:h:huawei:588-hota-cm-h-shark-bd:-:*:*:*:*:*:*:*
huawei588-hota-cm-h-shark-bd_firmware1.0.0.588cpe:2.3:o:huawei:588-hota-cm-h-shark-bd_firmware:1.0.0.588:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
huawei	576up005_hota-cm-h-shark-bd	-	cpe:2.3:h:huawei:576up005_hota-cm-h-shark-bd:-:::::::*
huawei	576up005_hota-cm-h-shark-bd_firmware	1.0.0.576	cpe:2.3:o:huawei:576up005_hota-cm-h-shark-bd_firmware:1.0.0.576:::::::*
huawei	577hota-cm-h-shark-bd	-	cpe:2.3:h:huawei:577hota-cm-h-shark-bd:-:::::::*
huawei	577hota-cm-h-shark-bd_firmware	1.0.0.577	cpe:2.3:o:huawei:577hota-cm-h-shark-bd_firmware:1.0.0.577:::::::*
huawei	581up-hota-cm-h-shark-bd	-	cpe:2.3:h:huawei:581up-hota-cm-h-shark-bd:-:::::::*
huawei	581up-hota-cm-h-shark-bd_firmware	1.0.0.581	cpe:2.3:o:huawei:581up-hota-cm-h-shark-bd_firmware:1.0.0.581:::::::*
huawei	586-hota-cm-h-shark-bd	-	cpe:2.3:h:huawei:586-hota-cm-h-shark-bd:-:::::::*
huawei	586-hota-cm-h-shark-bd_firmware	1.0.0.586	cpe:2.3:o:huawei:586-hota-cm-h-shark-bd_firmware:1.0.0.586:::::::*
huawei	588-hota-cm-h-shark-bd	-	cpe:2.3:h:huawei:588-hota-cm-h-shark-bd:-:::::::*
huawei	588-hota-cm-h-shark-bd_firmware	1.0.0.588	cpe:2.3:o:huawei:588-hota-cm-h-shark-bd_firmware:1.0.0.588:::::::*

Rows per page:

1-10 of 531

CNA Affected

[
  {
    "product": "576up005 HOTA-CM-H-Shark-BD;577HOTA-CM-H-Shark-BD;581up-HOTA-CM-H-Shark-BD;586-HOTA-CM-H-Shark-BD;588-HOTA-CM-H-Shark-BD;606-HOTA-CM-H-Shark-BD;BI-ACC-REPORT;CM-H-Shark-BD",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "1.0.0.576-fullpackage"
      },
      {
        "status": "affected",
        "version": "1.0.0.577-fullpackage"
      },
      {
        "status": "affected",
        "version": "1.0.0.581-fullpackage"
      },
      {
        "status": "affected",
        "version": "1.0.0.586-fullpackage"
      },
      {
        "status": "affected",
        "version": "1.0.0.588-fullpackage"
      },
      {
        "status": "affected",
        "version": "1.0.0.606-fullpackage"
      },
      {
        "status": "affected",
        "version": "1.0.0.1,1.0.0.2,1.0.0.3,1.0.0.4,1.0.0.5"
      },
      {
        "status": "affected",
        "version": "1.0.0.106,1.0.0.116,1.0.0.202,1.0.0.208,1.0.0.216,1.0.0.226,1.0.0.228,1.0.0.510,1.0.0.520,1.0.0.522,1.0.0.566,1.0.0.576,1.0.0.578,1.0.0.586,1.0.0.588,1.0.0.66(VN2-SP11),1.0.0.66(VN2-SP15),1.0.0.66(VN2-SP17),1.0.0.66(VN2-SP21),1.0.0.66(VN2-SP27),1.0.0.66(VN2-SP29),1.0.0.66(VN2-SP31),1.0.0.66(VN2-SP33),1.9.0.208,1.9.0.216,1.9.0.226,1.9.0.228,1.9.0.510,1.9.0.520,1.9.0.522,1.9.0.566,1.9.0.578,1.9.0.586,1.9.0.588"
      }
    ]
  }
]

References

www.huawei.com/en/psirt/security-advisories/huawei-sa-20220826-01-outofboundread-en

Social References

CVSS3

6.1

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

AI Score

6.2

Confidence

High

EPSS

0.001

Percentile

26.4%

JSON

Related for CVE-2020-36602