Search
Find a vulnerability
Search criteria
2 vulnerabilities found for smartax_ma5600t_firmware by huawei
CVE-2020-9067 (GCVE-0-2020-9067)
Vulnerability from nvd – Published: 2020-04-02 20:31 – Updated: 2024-08-04 10:19
VLAI
Summary
There is a buffer overflow vulnerability in some Huawei products. The vulnerability can be exploited by an attacker to perform remote code execution on the affected products when the affected product functions as an optical line terminal (OLT). Affected product versions include:SmartAX MA5600T versions V800R013C10, V800R015C00, V800R015C10, V800R017C00, V800R017C10, V800R018C00, V800R018C10; SmartAX MA5800 versions V100R017C00, V100R017C10, V100R018C00, V100R018C10, V100R019C10; SmartAX EA5800 versions V100R018C00, V100R018C10, V100R019C10.
Severity
No CVSS data available.
CWE
- Buffer Overflow
Assigner
References
1 reference
| URL | Tags |
|---|---|
| https://www.huawei.com/en/psirt/security-advisori… | x_refsource_CONFIRM |
Impacted products
3 products
| Vendor | Product | Version | |
|---|---|---|---|
| n/a | SmartAX MA5600T |
Affected:
V800R013C10
Affected: V800R015C00 Affected: V800R015C10 Affected: V800R017C00 Affected: V800R017C10 Affected: V800R018C00 Affected: V800R018C10 |
|
| n/a | SmartAX MA5800 |
Affected:
V100R017C00
Affected: V100R017C10 Affected: V100R018C00 Affected: V100R018C10 Affected: V100R019C10 |
|
| n/a | SmartAX EA5800 |
Affected:
V100R018C00
Affected: V100R018C10 Affected: V100R019C10 |
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T10:19:19.699Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200401-01-overflow-en"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "SmartAX MA5600T",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "V800R013C10"
},
{
"status": "affected",
"version": "V800R015C00"
},
{
"status": "affected",
"version": "V800R015C10"
},
{
"status": "affected",
"version": "V800R017C00"
},
{
"status": "affected",
"version": "V800R017C10"
},
{
"status": "affected",
"version": "V800R018C00"
},
{
"status": "affected",
"version": "V800R018C10"
}
]
},
{
"product": "SmartAX MA5800",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "V100R017C00"
},
{
"status": "affected",
"version": "V100R017C10"
},
{
"status": "affected",
"version": "V100R018C00"
},
{
"status": "affected",
"version": "V100R018C10"
},
{
"status": "affected",
"version": "V100R019C10"
}
]
},
{
"product": "SmartAX EA5800",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "V100R018C00"
},
{
"status": "affected",
"version": "V100R018C10"
},
{
"status": "affected",
"version": "V100R019C10"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "There is a buffer overflow vulnerability in some Huawei products. The vulnerability can be exploited by an attacker to perform remote code execution on the affected products when the affected product functions as an optical line terminal (OLT). Affected product versions include:SmartAX MA5600T versions V800R013C10, V800R015C00, V800R015C10, V800R017C00, V800R017C10, V800R018C00, V800R018C10; SmartAX MA5800 versions V100R017C00, V100R017C10, V100R018C00, V100R018C10, V100R019C10; SmartAX EA5800 versions V100R018C00, V100R018C10, V100R019C10."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Buffer Overflow",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2020-04-02T20:31:37.000Z",
"orgId": "25ac1063-e409-4190-8079-24548c77ea2e",
"shortName": "huawei"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200401-01-overflow-en"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "psirt@huawei.com",
"ID": "CVE-2020-9067",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "SmartAX MA5600T",
"version": {
"version_data": [
{
"version_value": "V800R013C10"
},
{
"version_value": "V800R015C00"
},
{
"version_value": "V800R015C10"
},
{
"version_value": "V800R017C00"
},
{
"version_value": "V800R017C10"
},
{
"version_value": "V800R018C00"
},
{
"version_value": "V800R018C10"
}
]
}
},
{
"product_name": "SmartAX MA5800",
"version": {
"version_data": [
{
"version_value": "V100R017C00"
},
{
"version_value": "V100R017C10"
},
{
"version_value": "V100R018C00"
},
{
"version_value": "V100R018C10"
},
{
"version_value": "V100R019C10"
}
]
}
},
{
"product_name": "SmartAX EA5800",
"version": {
"version_data": [
{
"version_value": "V100R018C00"
},
{
"version_value": "V100R018C10"
},
{
"version_value": "V100R019C10"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "There is a buffer overflow vulnerability in some Huawei products. The vulnerability can be exploited by an attacker to perform remote code execution on the affected products when the affected product functions as an optical line terminal (OLT). Affected product versions include:SmartAX MA5600T versions V800R013C10, V800R015C00, V800R015C10, V800R017C00, V800R017C10, V800R018C00, V800R018C10; SmartAX MA5800 versions V100R017C00, V100R017C10, V100R018C00, V100R018C10, V100R019C10; SmartAX EA5800 versions V100R018C00, V100R018C10, V100R019C10."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Buffer Overflow"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200401-01-overflow-en",
"refsource": "CONFIRM",
"url": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200401-01-overflow-en"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "25ac1063-e409-4190-8079-24548c77ea2e",
"assignerShortName": "huawei",
"cveId": "CVE-2020-9067",
"datePublished": "2020-04-02T20:31:37.000Z",
"dateReserved": "2020-02-18T00:00:00.000Z",
"dateUpdated": "2024-08-04T10:19:19.699Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2020-9067 (GCVE-0-2020-9067)
Vulnerability from cvelistv5 – Published: 2020-04-02 20:31 – Updated: 2024-08-04 10:19
VLAI
Summary
There is a buffer overflow vulnerability in some Huawei products. The vulnerability can be exploited by an attacker to perform remote code execution on the affected products when the affected product functions as an optical line terminal (OLT). Affected product versions include:SmartAX MA5600T versions V800R013C10, V800R015C00, V800R015C10, V800R017C00, V800R017C10, V800R018C00, V800R018C10; SmartAX MA5800 versions V100R017C00, V100R017C10, V100R018C00, V100R018C10, V100R019C10; SmartAX EA5800 versions V100R018C00, V100R018C10, V100R019C10.
Severity
No CVSS data available.
CWE
- Buffer Overflow
Assigner
References
1 reference
| URL | Tags |
|---|---|
| https://www.huawei.com/en/psirt/security-advisori… | x_refsource_CONFIRM |
Impacted products
3 products
| Vendor | Product | Version | |
|---|---|---|---|
| n/a | SmartAX MA5600T |
Affected:
V800R013C10
Affected: V800R015C00 Affected: V800R015C10 Affected: V800R017C00 Affected: V800R017C10 Affected: V800R018C00 Affected: V800R018C10 |
|
| n/a | SmartAX MA5800 |
Affected:
V100R017C00
Affected: V100R017C10 Affected: V100R018C00 Affected: V100R018C10 Affected: V100R019C10 |
|
| n/a | SmartAX EA5800 |
Affected:
V100R018C00
Affected: V100R018C10 Affected: V100R019C10 |
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T10:19:19.699Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200401-01-overflow-en"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "SmartAX MA5600T",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "V800R013C10"
},
{
"status": "affected",
"version": "V800R015C00"
},
{
"status": "affected",
"version": "V800R015C10"
},
{
"status": "affected",
"version": "V800R017C00"
},
{
"status": "affected",
"version": "V800R017C10"
},
{
"status": "affected",
"version": "V800R018C00"
},
{
"status": "affected",
"version": "V800R018C10"
}
]
},
{
"product": "SmartAX MA5800",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "V100R017C00"
},
{
"status": "affected",
"version": "V100R017C10"
},
{
"status": "affected",
"version": "V100R018C00"
},
{
"status": "affected",
"version": "V100R018C10"
},
{
"status": "affected",
"version": "V100R019C10"
}
]
},
{
"product": "SmartAX EA5800",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "V100R018C00"
},
{
"status": "affected",
"version": "V100R018C10"
},
{
"status": "affected",
"version": "V100R019C10"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "There is a buffer overflow vulnerability in some Huawei products. The vulnerability can be exploited by an attacker to perform remote code execution on the affected products when the affected product functions as an optical line terminal (OLT). Affected product versions include:SmartAX MA5600T versions V800R013C10, V800R015C00, V800R015C10, V800R017C00, V800R017C10, V800R018C00, V800R018C10; SmartAX MA5800 versions V100R017C00, V100R017C10, V100R018C00, V100R018C10, V100R019C10; SmartAX EA5800 versions V100R018C00, V100R018C10, V100R019C10."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Buffer Overflow",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2020-04-02T20:31:37.000Z",
"orgId": "25ac1063-e409-4190-8079-24548c77ea2e",
"shortName": "huawei"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200401-01-overflow-en"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "psirt@huawei.com",
"ID": "CVE-2020-9067",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "SmartAX MA5600T",
"version": {
"version_data": [
{
"version_value": "V800R013C10"
},
{
"version_value": "V800R015C00"
},
{
"version_value": "V800R015C10"
},
{
"version_value": "V800R017C00"
},
{
"version_value": "V800R017C10"
},
{
"version_value": "V800R018C00"
},
{
"version_value": "V800R018C10"
}
]
}
},
{
"product_name": "SmartAX MA5800",
"version": {
"version_data": [
{
"version_value": "V100R017C00"
},
{
"version_value": "V100R017C10"
},
{
"version_value": "V100R018C00"
},
{
"version_value": "V100R018C10"
},
{
"version_value": "V100R019C10"
}
]
}
},
{
"product_name": "SmartAX EA5800",
"version": {
"version_data": [
{
"version_value": "V100R018C00"
},
{
"version_value": "V100R018C10"
},
{
"version_value": "V100R019C10"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "There is a buffer overflow vulnerability in some Huawei products. The vulnerability can be exploited by an attacker to perform remote code execution on the affected products when the affected product functions as an optical line terminal (OLT). Affected product versions include:SmartAX MA5600T versions V800R013C10, V800R015C00, V800R015C10, V800R017C00, V800R017C10, V800R018C00, V800R018C10; SmartAX MA5800 versions V100R017C00, V100R017C10, V100R018C00, V100R018C10, V100R019C10; SmartAX EA5800 versions V100R018C00, V100R018C10, V100R019C10."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Buffer Overflow"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200401-01-overflow-en",
"refsource": "CONFIRM",
"url": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200401-01-overflow-en"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "25ac1063-e409-4190-8079-24548c77ea2e",
"assignerShortName": "huawei",
"cveId": "CVE-2020-9067",
"datePublished": "2020-04-02T20:31:37.000Z",
"dateReserved": "2020-02-18T00:00:00.000Z",
"dateUpdated": "2024-08-04T10:19:19.699Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}