CVE-2020-1881

Common vulnerabilities & exposures (CVE)

CVE database CVE database blogpost Release & EoL database

Published at: - 28-02-2020 08:15

Last modified: - 22-04-2022 09:02

Total changes: - 3

Description

NIP6800;Secospace USG6600;USG9500 products with versions of V500R001C30; V500R001C60SPC500; V500R005C00SPC100 have have a resource management error vulnerability. An attacker needs to perform specific operations to trigger a function of the affected device. Due to improper resource management of the function, the vulnerability can be exploited to cause service abnormal on affected devices.

Common Vulnerability Scoring System (CVSS)

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Low

Attack complexity

Network

Attack vector

High

Availability

None

Confidentiality

None

Integrity

None

Privileges required

Unchanged

Scope

None

User interaction

7.5

Base score

3.9

3.6

Exploitability score

Impact score

Verification logic

AND

vendor=huawei AND product=nip6800_firmware AND version=v500r001c30

vendor=huawei AND product=nip6800 AND version=-

AND

vendor=huawei AND product=secospace_usg6600_firmware AND version=v500r001c30spc200

vendor=huawei AND product=secospace_usg6600_firmware AND version=v500r001c30spc600

vendor=huawei AND product=secospace_usg6600 AND version=-

AND

vendor=huawei AND product=usg9500_firmware AND version=v500r001c30spc200

vendor=huawei AND product=usg9500_firmware AND version=v500r001c30spc600

vendor=huawei AND product=usg9500 AND version=-

AND

vendor=huawei AND product=oceanstor_5310_firmware AND version=v500r007c60spc100

vendor=huawei AND product=oceanstor_5310 AND version=5.0

Reference

Keywords

CVE-2020-1881

Common vulnerabilities & exposures (CVE)

Description

Common Vulnerability Scoring System (CVSS)

Verification logic

Reference

NVD

CVE-2020-1881

CVE

Common vulnerabilities & exposures

CVSS

Common vulnerability scoring system

Security

Vulnerabilities

Exposures