Design/Logic Flaw

2020-02-1803:15:00

PRIOn knowledge base

www.prio-n.com

6.5 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

30.8%

JSON

Huawei HEGE-560 version 1.0.1.20(SP2), OSCA-550 version 1.0.0.71(SP1), OSCA-550A version 1.0.0.71(SP1), OSCA-550AX version 1.0.0.71(SP2), and OSCA-550X version 1.0.0.71(SP2) have an insufficient verification vulnerability. An attacker can perform specific operations to exploit this vulnerability by physical access methods. Successful exploitation may cause the attacker perform an illegal operation.

CPENameOperatorVersion
hege-560_firmwareeq1.0.120-sp2
osca-550_firmwareeq1.0.71-sp1
osca-550a_firmwareeq1.0.71-sp1
osca-550ax_firmwareeq1.0.71-sp2
osca-550x_firmwareeq1.0.71-sp2

Name	Operator	Version
hege-560_firmware	eq	1.0.120-sp2
osca-550_firmware	eq	1.0.71-sp1
osca-550a_firmware	eq	1.0.71-sp1
osca-550ax_firmware	eq	1.0.71-sp2
osca-550x_firmware	eq	1.0.71-sp2