CVE-2020-9068
Last modified
CVE-2020-9068 is a critical-severity vulnerability rated 9.8/10 on the CVSS scale. Huawei AR3200 products with versions of V200R007C00SPC900, V200R007C00SPCa00, V200R007C00SPCb00, V200R007C00SPCc00, V200R009C00SPC500 have an improper authentication vulnerability. Attackers need to perform some operations to exploit the vulnerability. EPSS estimates a 1.08% chance of exploitation in the next 30 days.
Description
Huawei AR3200 products with versions of V200R007C00SPC900, V200R007C00SPCa00, V200R007C00SPCb00, V200R007C00SPCc00, V200R009C00SPC500 have an improper authentication vulnerability. Attackers need to perform some operations to exploit the vulnerability. Successful exploit may obtain certain permissions on the device.
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Huawei | Ar3200 Firmware | v200r007c00spc900 |
| Huawei | Ar3200 Firmware | v200r007c00spca00 |
| Huawei | Ar3200 Firmware | v200r007c00spcb00 |
| Huawei | Ar3200 Firmware | v200r007c00spcc00 |
| Huawei | Ar3200 Firmware | v200r009c00spc500 |
References
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2020-9068?
How severe is CVE-2020-9068?
How do I fix CVE-2020-9068?
Are you affected by CVE-2020-9068?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST