Lucene search

Huawei TechnologiesHUAWEI-SA-20220826-01-OUTOFBOUNDREAD

HistorySep 01, 2022 - 12:00 a.m.

Security Advisory - Out-of-bounds Read and Write Vulnerability in Some Huawei Headset Products

2022-09-0100:00:00

Huawei Technologies

www.huawei.com

6.1 Medium

CVSS3

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

0.001 Low

EPSS

Percentile

26.5%

JSON

There is an out-of-bounds read and write vulnerability in some headset products. An unauthenticated attacker gets the device physically and crafts malformed message with specific parameter and sends the message to the affected products. Due to insufficient validation of message, which may be exploited to cause out-of-bounds read and write. (Vulnerability ID: HWPSIRT-2020-87976)

This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2020-36602.

For products that have released software updates to fix this vulnerability, Huawei will release and update the Security Advisory at:

<http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20220826-01-outofboundread-en>

Affected configurations

Vulners

Node

huawei576up005_hota-cm-h-shark-bdMatch1.0.0.576-fullpackage

huawei577hota-cm-h-shark-bdMatch1.0.0.577-fullpackage

huawei581up-hota-cm-h-shark-bdMatch1.0.0.581-fullpackage

huawei586-hota-cm-h-shark-bdMatch1.0.0.586-fullpackage

huawei588-hota-cm-h-shark-bdMatch1.0.0.588-fullpackage

huawei606-hota-cm-h-shark-bdMatch1.0.0.606-fullpackage

huaweibi-acc-reportMatch1.0.0.1

huaweibi-acc-reportMatch1.0.0.2

huaweibi-acc-reportMatch1.0.0.3

huaweibi-acc-reportMatch1.0.0.4

huaweibi-acc-reportMatch1.0.0.5

huaweicm-h-shark-bdMatch1.0.0.106

huaweicm-h-shark-bdMatch1.0.0.116

huaweicm-h-shark-bdMatch1.0.0.202

huaweicm-h-shark-bdMatch1.0.0.208

huaweicm-h-shark-bdMatch1.0.0.216

huaweicm-h-shark-bdMatch1.0.0.226

huaweicm-h-shark-bdMatch1.0.0.228

huaweicm-h-shark-bdMatch1.0.0.510

huaweicm-h-shark-bdMatch1.0.0.520

huaweicm-h-shark-bdMatch1.0.0.522

huaweicm-h-shark-bdMatch1.0.0.566

huaweicm-h-shark-bdMatch1.0.0.576

huaweicm-h-shark-bdMatch1.0.0.578

huaweicm-h-shark-bdMatch1.0.0.586

huaweicm-h-shark-bdMatch1.0.0.588

huaweicm-h-shark-bdMatch1.0.0.66

huaweicm-h-shark-bdMatch1.9.0.208

huaweicm-h-shark-bdMatch1.9.0.216

huaweicm-h-shark-bdMatch1.9.0.226

huaweicm-h-shark-bdMatch1.9.0.228

huaweicm-h-shark-bdMatch1.9.0.510

huaweicm-h-shark-bdMatch1.9.0.520

huaweicm-h-shark-bdMatch1.9.0.522

huaweicm-h-shark-bdMatch1.9.0.566

huaweicm-h-shark-bdMatch1.9.0.578

huaweicm-h-shark-bdMatch1.9.0.586

huaweicm-h-shark-bdMatch1.9.0.588

CPENameOperatorVersion
576up005 hota-cm-h-shark-bdeq1.0.0.576-fullpackage
577hota-cm-h-shark-bdeq1.0.0.577-fullpackage
581up-hota-cm-h-shark-bdeq1.0.0.581-fullpackage
586-hota-cm-h-shark-bdeq1.0.0.586-fullpackage
588-hota-cm-h-shark-bdeq1.0.0.588-fullpackage
606-hota-cm-h-shark-bdeq1.0.0.606-fullpackage
bi-acc-reporteq1.0.0.1
bi-acc-reporteq1.0.0.2
bi-acc-reporteq1.0.0.3
bi-acc-reporteq1.0.0.4

Name	Operator	Version
576up005 hota-cm-h-shark-bd	eq	1.0.0.576-fullpackage
577hota-cm-h-shark-bd	eq	1.0.0.577-fullpackage
581up-hota-cm-h-shark-bd	eq	1.0.0.581-fullpackage
586-hota-cm-h-shark-bd	eq	1.0.0.586-fullpackage
588-hota-cm-h-shark-bd	eq	1.0.0.588-fullpackage
606-hota-cm-h-shark-bd	eq	1.0.0.606-fullpackage
bi-acc-report	eq	1.0.0.1
bi-acc-report	eq	1.0.0.2
bi-acc-report	eq	1.0.0.3
bi-acc-report	eq	1.0.0.4

Rows per page:

1-10 of 451

6.1 Medium

CVSS3

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

0.001 Low

EPSS

Percentile

26.5%

JSON

Related for HUAWEI-SA-20220826-01-OUTOFBOUNDREAD