exploitDog

CVE-2020-9202

Опубликовано: 24 дек. 2020

Источник: nvd

CVSS3: 4.4

CVSS2: 2.1

EPSS Низкий

Описание

There is an information disclosure vulnerability in TE Mobile software versions V600R006C10,V600R006C10SPC100. Due to the improper storage of some information in certain specific scenario, the attacker can gain information in the victim's device to launch the attack, successful exploit could cause information disclosure.

Ссылки

https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20201209-01-informationleak-en
Vendor Advisory
https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20201209-01-informationleak-en
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:huawei:te_mobile:v600r006c10:*:*:*:*:*:*:*

cpe:2.3:a:huawei:te_mobile:v600r006c10spc100:*:*:*:*:*:*:*

EPSS

Процентиль: 8%

0.00031

Низкий

4.4 Medium

CVSS3

2.1 Low

CVSS2

Дефекты

CWE-922

Связанные уязвимости

GHSA-gxhq-4chx-5r72

github

больше 3 лет назад

There is an information disclosure vulnerability in TE Mobile software versions V600R006C10,V600R006C10SPC100. Due to the improper storage of some information in certain specific scenario, the attacker can gain information in the victim's device to launch the attack, successful exploit could cause information disclosure.

EPSS

Процентиль: 8%

0.00031

Низкий

4.4 Medium

CVSS3

2.1 Low

CVSS2

Дефекты

CWE-922