CVE-2019-5914

MEDIUM

V20 PRO L-01J Firmware L01J20c and L01J20d - Denial of Service via Crafted Access Point

Title source: llm
STIX 2.1

Description

V20 PRO L-01J software version L01J20c and L01J20d has a NULL pointer exception flaw that can be used by an attacker to cause the device to crash on the same network range via a specially crafted access point.

References (2)

Core 2
Core References
Third Party Advisory third-party-advisory x_refsource_jvn
http://jvn.jp/en/jp/JVN40439414/index.html

Scores

CVSS v3 5.3
EPSS 0.0047
EPSS Percentile 37.5%
Attack Vector ADJACENT_NETWORK
CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

Details

CWE
CWE-476
Status published
Products (2)
nttdocomo/v20_pro_l-01j_firmware l01j20c
nttdocomo/v20_pro_l-01j_firmware l01j20d
Published Feb 13, 2019
Tracked Since Feb 18, 2026