admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-28 09:11:28 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2020/CVE-2020-366xx/CVE-2020-36602.json
René Helmke 7791f18b51 bootstrap
2023-05-16 16:09:41 +02:00

469 lines
16 KiB
JSON
Raw Blame History

{
"id": "CVE-2020-36602",
"sourceIdentifier": "psirt@huawei.com",
"published": "2022-09-20T20:15:09.723",
"lastModified": "2022-09-22T13:29:44.113",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
"value": "There is an out-of-bounds read and write vulnerability in some headset products. An unauthenticated attacker gets the device physically and crafts malformed message with specific parameter and sends the message to the affected products. Due to insufficient validation of message, which may be exploited to cause out-of-bounds read and write."
},
{
"lang": "es",
"value": "Se presenta una vulnerabilidad de lectura y escritura fuera de l\u00edmites en algunos productos de auriculares. Un atacante no autenticado obtiene el dispositivo f\u00edsicamente y dise\u00f1a un mensaje malformado con un par\u00e1metro espec\u00edfico y env\u00eda el mensaje a los productos afectados. Debido a una insuficiente comprobaci\u00f3n del mensaje, que puede ser explotado para causar lectura y escritura fuera de l\u00edmites"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
"attackVector": "PHYSICAL",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 0.9,
"impactScore": 5.2
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-125"
},
{
"lang": "en",
"value": "CWE-787"
}
]
}
],
"configurations": [
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:huawei:576up005_hota-cm-h-shark-bd_firmware:1.0.0.576:*:*:*:*:*:*:*",
"matchCriteriaId": "4CD62EE0-E64C-4FF5-8567-2EF3A10F4C7B"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:huawei:576up005_hota-cm-h-shark-bd:-:*:*:*:*:*:*:*",
"matchCriteriaId": "46D9D107-8AFF-44A8-B9BE-3122F3D9697B"
}
]
}
]
},
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:huawei:577hota-cm-h-shark-bd_firmware:1.0.0.577:*:*:*:*:*:*:*",
"matchCriteriaId": "27676C44-A16B-47A6-9C11-99DC1E795AC1"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:huawei:577hota-cm-h-shark-bd:-:*:*:*:*:*:*:*",
"matchCriteriaId": "592046BB-F1E6-4296-817F-0D17A684D58E"
}
]
}
]
},
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:huawei:581up-hota-cm-h-shark-bd_firmware:1.0.0.581:*:*:*:*:*:*:*",
"matchCriteriaId": "4EDB97DC-3A4B-454D-9DEA-AD7A5162F936"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:huawei:581up-hota-cm-h-shark-bd:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B7144AAE-03BA-4ADB-81D0-150A7449EC79"
}
]
}
]
},
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:huawei:586-hota-cm-h-shark-bd_firmware:1.0.0.586:*:*:*:*:*:*:*",
"matchCriteriaId": "95422749-5574-4106-9BA8-EC87BDEE18D5"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:huawei:586-hota-cm-h-shark-bd:-:*:*:*:*:*:*:*",
"matchCriteriaId": "ADDE004F-EBF6-4DBF-9459-5D58550CBF34"
}
]
}
]
},
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:huawei:588-hota-cm-h-shark-bd_firmware:1.0.0.588:*:*:*:*:*:*:*",
"matchCriteriaId": "C5E07AE8-0C69-437B-8CC8-17061600A1B6"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:huawei:588-hota-cm-h-shark-bd:-:*:*:*:*:*:*:*",
"matchCriteriaId": "191C353D-9251-4E17-A8C1-EEFB3D98943B"
}
]
}
]
},
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:huawei:606-hota-cm-h-shark-bd_firmware:1.0.0.606:*:*:*:*:*:*:*",
"matchCriteriaId": "DF6250D5-E660-4A07-8CA7-A59F54F2A488"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:huawei:606-hota-cm-h-shark-bd:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5E00B0F4-8959-4909-858B-8EEA64330135"
}
]
}
]
},
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:huawei:bi-acc-report_firmware:1.0.0.1:*:*:*:*:*:*:*",
"matchCriteriaId": "2F008D3C-1BBD-4A69-98D4-315B2A5D92E3"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:huawei:bi-acc-report_firmware:1.0.0.2:*:*:*:*:*:*:*",
"matchCriteriaId": "E0EB4E34-03D0-47B1-8DC6-96EC1BECDDF0"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:huawei:bi-acc-report_firmware:1.0.0.3:*:*:*:*:*:*:*",
"matchCriteriaId": "AB459247-22A8-48AC-B97D-948CAAFCA471"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:huawei:bi-acc-report_firmware:1.0.0.4:*:*:*:*:*:*:*",
"matchCriteriaId": "5FF84D47-BBEE-4004-AA47-E799ED2E1407"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:huawei:bi-acc-report_firmware:1.0.0.5:*:*:*:*:*:*:*",
"matchCriteriaId": "267931DA-5398-465B-A149-F32C4B577486"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:huawei:bi-acc-report:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0C285118-F357-43D6-B9FE-BE1A3E0907F2"
}
]
}
]
},
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:huawei:cm-h-shark-bd_firmware:1.0.0.66\\(vn2-sp11\\):*:*:*:*:*:*:*",
"matchCriteriaId": "F30D8A50-7540-45E0-96EB-EF1920891744"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:huawei:cm-h-shark-bd_firmware:1.0.0.66\\(vn2-sp15\\):*:*:*:*:*:*:*",
"matchCriteriaId": "BE277CBB-DF9C-4038-8D42-76CA8771A7DE"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:huawei:cm-h-shark-bd_firmware:1.0.0.66\\(vn2-sp17\\):*:*:*:*:*:*:*",
"matchCriteriaId": "97381235-1F6A-4EC9-A10E-43745F2EE14C"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:huawei:cm-h-shark-bd_firmware:1.0.0.66\\(vn2-sp21\\):*:*:*:*:*:*:*",
"matchCriteriaId": "E9B68556-1AAF-49C5-BFFB-637ED0228431"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:huawei:cm-h-shark-bd_firmware:1.0.0.66\\(vn2-sp27\\):*:*:*:*:*:*:*",
"matchCriteriaId": "250E3802-BC17-40A4-A9F1-9CC89204AF50"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:huawei:cm-h-shark-bd_firmware:1.0.0.66\\(vn2-sp29\\):*:*:*:*:*:*:*",
"matchCriteriaId": "8756F566-6BAD-4CAD-BE60-7555AE0A0D61"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:huawei:cm-h-shark-bd_firmware:1.0.0.66\\(vn2-sp31\\):*:*:*:*:*:*:*",
"matchCriteriaId": "8FB0B5FE-B422-4426-8856-A75A317F8A5B"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:huawei:cm-h-shark-bd_firmware:1.0.0.66\\(vn2-sp33\\):*:*:*:*:*:*:*",
"matchCriteriaId": "48B95F08-AEFF-4E97-A7EE-04864B871D0A"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:huawei:cm-h-shark-bd_firmware:1.0.0.106:*:*:*:*:*:*:*",
"matchCriteriaId": "352B2B08-0A5D-4212-8417-38303E8CFD34"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:huawei:cm-h-shark-bd_firmware:1.0.0.116:*:*:*:*:*:*:*",
"matchCriteriaId": "C7D49229-664A-4042-93F2-A06C371FFCBC"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:huawei:cm-h-shark-bd_firmware:1.0.0.202:*:*:*:*:*:*:*",
"matchCriteriaId": "D6EA61A3-0583-4577-ACDE-583A3280E759"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:huawei:cm-h-shark-bd_firmware:1.0.0.208:*:*:*:*:*:*:*",
"matchCriteriaId": "C9109225-36DA-4042-A31A-94F4A75B4675"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:huawei:cm-h-shark-bd_firmware:1.0.0.216:*:*:*:*:*:*:*",
"matchCriteriaId": "0EEF7C64-F872-44A3-8E2C-7104F72804D5"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:huawei:cm-h-shark-bd_firmware:1.0.0.226:*:*:*:*:*:*:*",
"matchCriteriaId": "1FBA91C1-6970-4340-AA35-84A74B632618"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:huawei:cm-h-shark-bd_firmware:1.0.0.228:*:*:*:*:*:*:*",
"matchCriteriaId": "C9EA888A-B3A3-4F68-B7DF-0E167A02D945"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:huawei:cm-h-shark-bd_firmware:1.0.0.510:*:*:*:*:*:*:*",
"matchCriteriaId": "D9C3C896-6EEF-402B-AE02-9607DC6E8BD9"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:huawei:cm-h-shark-bd_firmware:1.0.0.520:*:*:*:*:*:*:*",
"matchCriteriaId": "0AD877AB-DC3C-488F-A735-298B3743CEE3"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:huawei:cm-h-shark-bd_firmware:1.0.0.522:*:*:*:*:*:*:*",
"matchCriteriaId": "73EE9A4D-AE78-4701-A111-F0B2AFFE7C89"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:huawei:cm-h-shark-bd_firmware:1.0.0.566:*:*:*:*:*:*:*",
"matchCriteriaId": "EB834B04-137F-4BC0-9BF8-EBABFB407ED3"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:huawei:cm-h-shark-bd_firmware:1.0.0.576:*:*:*:*:*:*:*",
"matchCriteriaId": "92F09872-A718-42A9-90B5-90B8F0E6A489"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:huawei:cm-h-shark-bd_firmware:1.0.0.578:*:*:*:*:*:*:*",
"matchCriteriaId": "D019742C-A909-42B4-8436-952633863308"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:huawei:cm-h-shark-bd_firmware:1.0.0.586:*:*:*:*:*:*:*",
"matchCriteriaId": "ACDED3D8-B0D5-4191-B0F2-B68B9244B2FE"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:huawei:cm-h-shark-bd_firmware:1.0.0.588:*:*:*:*:*:*:*",
"matchCriteriaId": "DD1BA004-40B9-43A7-800A-B811036941FD"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:huawei:cm-h-shark-bd_firmware:1.9.0.208:*:*:*:*:*:*:*",
"matchCriteriaId": "04D960D1-7834-42C5-B357-0487F6E54198"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:huawei:cm-h-shark-bd_firmware:1.9.0.216:*:*:*:*:*:*:*",
"matchCriteriaId": "EEB6D1F2-7753-4526-BEF6-49E62684BF87"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:huawei:cm-h-shark-bd_firmware:1.9.0.226:*:*:*:*:*:*:*",
"matchCriteriaId": "A3CD33AE-B7E9-4149-B660-313A7BF1CA53"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:huawei:cm-h-shark-bd_firmware:1.9.0.228:*:*:*:*:*:*:*",
"matchCriteriaId": "F9ABE5A6-A576-48DA-BE6A-049272CE50E8"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:huawei:cm-h-shark-bd_firmware:1.9.0.510:*:*:*:*:*:*:*",
"matchCriteriaId": "B015ACC9-23B1-4467-AAC9-F4BB25314391"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:huawei:cm-h-shark-bd_firmware:1.9.0.520:*:*:*:*:*:*:*",
"matchCriteriaId": "B783B038-87A8-4684-94D9-C7682538BF85"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:huawei:cm-h-shark-bd_firmware:1.9.0.522:*:*:*:*:*:*:*",
"matchCriteriaId": "20FF7586-3714-4960-B69F-497727288225"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:huawei:cm-h-shark-bd_firmware:1.9.0.566:*:*:*:*:*:*:*",
"matchCriteriaId": "BAE41F32-2E8B-42C1-AE6C-BA75DD049CEE"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:huawei:cm-h-shark-bd_firmware:1.9.0.578:*:*:*:*:*:*:*",
"matchCriteriaId": "ADE6C797-4BC5-4922-A480-A670C1D5BB55"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:huawei:cm-h-shark-bd_firmware:1.9.0.586:*:*:*:*:*:*:*",
"matchCriteriaId": "EEEEEDC8-3716-49AD-BABF-C26031D70503"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:huawei:cm-h-shark-bd_firmware:1.9.0.588:*:*:*:*:*:*:*",
"matchCriteriaId": "E6249992-4CE2-4515-9C9F-B7A09B2650B1"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:huawei:cm-h-shark-bd:-:*:*:*:*:*:*:*",
"matchCriteriaId": "BD33F24B-8D65-49B5-8AFD-A86C767346A9"
}
]
}
]
}
],
"references": [
{
"url": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20220826-01-outofboundread-en",
"source": "psirt@huawei.com",
"tags": [
"Vendor Advisory"
]
}
]
}
Reference in New Issue View Git Blame Copy Permalink