CVE-2020-9086

MEDIUM Year: 2020
CVSS v3 Score
4.3
Medium
Weakness Type
CWE-124
View all →

Vulnerability Description

There is a buffer error vulnerability in some Huawei product. An unauthenticated attacker may send special UPNP message to the affected products. Due to insufficient input validation of some value, successful exploit may cause some service abnormal. (Vulnerability ID: HWPSIRT-2017-08234) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2020-9086.

Related Vulnerabilities

CVE-2025-4373

MEDIUM
CVSS:4.8(Medium)

A flaw was found in GLib, which is vulnerable to an integer overflow in the g_string_insert_unichar() function. When the position at which to insert the character is large, the position will overflow,...

CWE-1242025

CVE-2018-15361

CRITICAL
CVSS:9.8(Critical)

UltraVNC revision 1198 has a buffer underflow vulnerability in VNC client code, which can potentially result in code execution. This attack appears to be exploitable via network connectivity. This vul...

CWE-1242018

CVE-2021-38578

CRITICAL
CVSS:9.8(Critical)

Existing CommBuffer checks in SmmEntryPoint will not catch underflow when computing BufferSize.

CWE-1242021

CVE-2023-25610

CRITICAL
CVSS:9.8(Critical)

A buffer underwrite ('buffer underflow') vulnerability in the administrative interface of Fortinet FortiOS version 7.2.0 through 7.2.3, version 7.0.0 through 7.0.6, version 6.4.0 through 6.4.11 and ve...

CWE-1242023

CVE-2023-32614

CRITICAL
CVSS:9.8(Critical)

A heap-based buffer overflow vulnerability exists in the create_png_object functionality of Accusoft ImageGear 20.1. A specially crafted malformed file can lead to memory corruption. An attacker can p...

CWE-1242023

CVE-2023-48230

CRITICAL
CVSS:9.8(Critical)

Cap'n Proto is a data interchange format and capability-based RPC system. In versions 1.0 and 1.0.1, when using the KJ HTTP library with WebSocket compression enabled, a buffer underrun can be caused ...

CWE-1242023