First published: Mon Apr 27 2020(Updated: )
Huawei AR3200 products with versions of V200R007C00SPC900, V200R007C00SPCa00, V200R007C00SPCb00, V200R007C00SPCc00, V200R009C00SPC500 have an improper authentication vulnerability. Attackers need to perform some operations to exploit the vulnerability. Successful exploit may obtain certain permissions on the device.
Credit: psirt@huawei.com
Affected Software | Affected Version | How to fix |
---|---|---|
Huawei Ar3200 Firmware | =v200r007c00spc900 | |
Huawei Ar3200 Firmware | =v200r007c00spca00 | |
Huawei Ar3200 Firmware | =v200r007c00spcb00 | |
Huawei Ar3200 Firmware | =v200r007c00spcc00 | |
Huawei Ar3200 Firmware | =v200r009c00spc500 | |
Huawei AR3200 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this Huawei AR3200 vulnerability is CVE-2020-9068.
The severity level of CVE-2020-9068 is critical with a CVSS score of 9.8.
Huawei AR3200 products with versions of V200R007C00SPC900, V200R007C00SPCa00, V200R007C00SPCb00, V200R007C00SPCc00, V200R009C00SPC500 are affected by this vulnerability.
Apply the necessary security patches and updates provided by Huawei.
You can find more information about CVE-2020-9068 on the official Huawei security advisory page: [https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200422-01-authentication-en](https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200422-01-authentication-en)