1. Home
  2. CVE Database
  3. CVE-2020-1855
MEDIUM · 6.1

CVE-2020-1855

Huawei HEGE-570 version 1.0.1.22(SP3); and HEGE-560, OSCA-550, OSCA-550A, OSCA-550AX, and OSCA-550X version 1.0.1.21(SP3) have an insufficient verification vulnerability. An attacker can access the de...

Vulnerability Description

Huawei HEGE-570 version 1.0.1.22(SP3); and HEGE-560, OSCA-550, OSCA-550A, OSCA-550AX, and OSCA-550X version 1.0.1.21(SP3) have an insufficient verification vulnerability. An attacker can access the device physically and exploit this vulnerability to tamper with device information. Successful exploit may cause service abnormal.

CVSS Score

6.1

MEDIUM

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
Attack Vector
PHYSICAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
NONE
Integrity
HIGH
Availability
HIGH

Affected Products

VendorProductVersions
HuaweiHege-560 Firmware1.0.1.21\(sp3\)
HuaweiHege-560-
HuaweiOsca-550 Firmware1.0.1.21\(sp3\)
HuaweiOsca-550-
HuaweiOsca-550A Firmware1.0.1.21\(sp3\)
HuaweiOsca-550A-
HuaweiOsca-550Ax Firmware1.0.1.21\(sp3\)
HuaweiOsca-550Ax-
HuaweiOsca-550X Firmware1.0.1.21\(sp3\)
HuaweiOsca-550X-
HuaweiHege-570 Firmware1.0.1.22\(sp3\)
HuaweiHege-570-

References

FAQ

What is CVE-2020-1855?

CVE-2020-1855 is a vulnerability with a CVSS score of 6.1 (MEDIUM). Huawei HEGE-570 version 1.0.1.22(SP3); and HEGE-560, OSCA-550, OSCA-550A, OSCA-550AX, and OSCA-550X version 1.0.1.21(SP3) have an insufficient verification vulnerability. An attacker can access the de...

How severe is CVE-2020-1855?

CVE-2020-1855 has been rated MEDIUM with a CVSS base score of 6.1/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2020-1855?

Check the references section above for vendor advisories and patch information. Affected products include: Huawei Hege-560 Firmware, Huawei Hege-560, Huawei Osca-550 Firmware, Huawei Osca-550, Huawei Osca-550A Firmware.