16 matches found
CVE-2020-1855
Huawei HEGE-570 version 1.0.1.22SP3; and HEGE-560, OSCA-550, OSCA-550A, OSCA-550AX, and OSCA-550X version 1.0.1.21SP3 have an insufficient verification vulnerability. An attacker can access the device physically and exploit this vulnerability to tamper with device information. Successful exploit...
CVE-2020-1843
Huawei HEGE-560 version 1.0.1.20SP2, OSCA-550 version 1.0.0.71SP1, OSCA-550A version 1.0.0.71SP1, OSCA-550AX version 1.0.0.71SP2, and OSCA-550X version 1.0.0.71SP2 have an insufficient verification vulnerability. An attacker can perform specific operations to exploit this vulnerability by physica...
Input validation
There is an insufficient integrity validation vulnerability in several products. The device does not sufficiently validate the integrity of certain file in certain loading processes, successful exploit could allow the attacker to load a crafted file to the device through USB.Affected product...
CVE-2020-1802
CVE-2020-1802 pertains to Huawei OSCA-550 family devices with an insufficient integrity validation vulnerability during loading via USB. Affected versions include OSCA-550, OSCA-550A, OSCA-550AX, and OSCA-550X v1.0.1.23(SP2). The root cause is inadequate integrity checks on certain files during t...
CVE-2020-1879
There is an improper integrity checking vulnerability on some huawei products. The software of the affected product has an improper integrity check which may allow an attacker with high privilege to make malicious modifications.Affected product versions include:HEGE-560 versions...
CVE-2020-1879
Summary: CVE-2020-1879 describes an improper integrity-check vulnerability in several Huawei smart devices that can let a high-privilege attacker perform malicious modifications. Affected products/versions: HEGE-560 v1.0.1.21(SP3); HEGE-570 v1.0.1.22(SP3); OSCA-550 v1.0.1.21(SP3); OSCA-550A v1.0....
CVE-2020-1879
There is an improper integrity checking vulnerability on some huawei products. The software of the affected product has an improper integrity check which may allow an attacker with high privilege to make malicious modifications.Affected product versions include:HEGE-560 versions...
PT-2020-15137 · Osca +1 · Osca-550A +3
Name of the Vulnerable Software and Affected Versions: HEGE-560 version 1.0.1.21SP3 HEGE-570 version 1.0.1.22SP3 OSCA-550 version 1.0.1.21SP3 OSCA-550A version 1.0.1.21SP3 OSCA-550AX version 1.0.1.21SP3 OSCA-550X version 1.0.1.21SP3 Description: The software of the affected products has an improp...
CVE-2020-1842
Huawei HEGE-560 version 1.0.1.20SP2; OSCA-550 and OSCA-550A version 1.0.0.71SP1; and OSCA-550AX and OSCA-550X version 1.0.0.71SP2 have an insufficient authentication vulnerability. An attacker can access the device physically and perform specific operations to exploit this vulnerability. Successf...
Authentication flaw
Huawei HEGE-560 version 1.0.1.20SP2; OSCA-550 and OSCA-550A version 1.0.0.71SP1; and OSCA-550AX and OSCA-550X version 1.0.0.71SP2 have an insufficient authentication vulnerability. An attacker can access the device physically and perform specific operations to exploit this vulnerability. Successf...
CVE-2020-1843
Huawei HEGE-560 version 1.0.1.20SP2, OSCA-550 version 1.0.0.71SP1, OSCA-550A version 1.0.0.71SP1, OSCA-550AX version 1.0.0.71SP2, and OSCA-550X version 1.0.0.71SP2 have an insufficient verification vulnerability. An attacker can perform specific operations to exploit this vulnerability by physica...
Design/Logic Flaw
Huawei HEGE-570 version 1.0.1.22SP3; and HEGE-560, OSCA-550, OSCA-550A, OSCA-550AX, and OSCA-550X version 1.0.1.21SP3 have an insufficient verification vulnerability. An attacker can access the device physically and exploit this vulnerability to tamper with device information. Successful exploit...
CVE-2020-1842
Huawei HEGE-560 version 1.0.1.20SP2; OSCA-550 and OSCA-550A version 1.0.0.71SP1; and OSCA-550AX and OSCA-550X version 1.0.0.71SP2 have an insufficient authentication vulnerability. An attacker can access the device physically and perform specific operations to exploit this vulnerability. Successf...
CVE-2020-1842
CVE-2020-1842: Affected Huawei devices (HEGE-560; OSCA-550/550A/550X family) expose an insufficient authentication flaw that can be exploited with physical access to obtain high privileges. Root cause is authentication weakness allowing attackers with local access to perform privileged operations...
CVE-2020-1855
Huawei HEGE-570 version 1.0.1.22SP3; and HEGE-560, OSCA-550, OSCA-550A, OSCA-550AX, and OSCA-550X version 1.0.1.21SP3 have an insufficient verification vulnerability. An attacker can access the device physically and exploit this vulnerability to tamper with device information. Successful exploit...
CVE-2020-1855
CVE-2020-1855 affects Huawei HEGE-570 (1.0.1.22 SP3) and HEGE-560, OSCA-550/550A/550AX/550X (1.0.1.21 SP3) with an insufficient verification vulnerability. An attacker with physical access can tamper with device information, potentially causing service abnormality. Huawei has released software up...