Description

There is an out-of-bounds read and write vulnerability in some headset products. An unauthenticated attacker gets the device physically and crafts malformed message with specific parameter and sends the message to the affected products. Due to insufficient validation of message, which may be exploited to cause out-of-bounds read and write.

Related CPE's

o

huawei

576up005_hota-cm-h-shark-bd_firmware

1.0.0.576

Vulnerable

h

huawei

576up005_hota-cm-h-shark-bd

-

o

huawei

577hota-cm-h-shark-bd_firmware

1.0.0.577

Vulnerable

h

huawei

577hota-cm-h-shark-bd

-

o

huawei

581up-hota-cm-h-shark-bd_firmware

1.0.0.581

Vulnerable

h

huawei

581up-hota-cm-h-shark-bd

-

o

huawei

586-hota-cm-h-shark-bd_firmware

1.0.0.586

Vulnerable

h

huawei

586-hota-cm-h-shark-bd

-

o

huawei

588-hota-cm-h-shark-bd_firmware

1.0.0.588

Vulnerable

h

huawei

588-hota-cm-h-shark-bd

-

o

huawei

606-hota-cm-h-shark-bd_firmware

1.0.0.606

Vulnerable

h

huawei

606-hota-cm-h-shark-bd

-

o

huawei

bi-acc-report_firmware

5

h

huawei

bi-acc-report

-

o

huawei

cm-h-shark-bd_firmware

34

h

huawei

cm-h-shark-bd

-

References

https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20220826-01-outofboundread-en

Vendor Advisory

https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20220826-01-outofboundread-en

Vendor Advisory

Weaknesses

[email protected]

Primary
CWE-125CWE-787

134c704f-9b21-4f2e-91b3-4a467353bcc0

Secondary
CWE-125CWE-787

CVSS impact metrics

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

6.1 · Medium

Information

Source identifier

[email protected]

Vulnerability status

Modified

Published

2022-09-20T18:15:09.723Z

3 years ago

Last modified

2025-05-28T14:15:21.060Z

10 months ago