Vulnerability Description
Huawei products NIP6800 versions V500R001C30, V500R001C60SPC500, and V500R005C00SPC100; Secospace USG6600 versions V500R001C30SPC600, V500R001C60SPC500, and V500R005C00SPC100; and USG9500 versions V500R001C30SPC600, V500R001C60SPC500, and V500R005C00SPC100 have a denial of service vulnerability. Attackers need to perform a series of operations in a special scenario to exploit this vulnerability. Successful exploit may cause the new connections can't be established, result in a denial of service.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Huawei | Nip6800 Firmware | v500r001c30 |
| Huawei | Nip6800 | - |
| Huawei | Secospace Usg6600 Firmware | v500r001c30spc200 |
| Huawei | Secospace Usg6600 | - |
| Huawei | Usg9500 Firmware | v500r001c30spc200 |
| Huawei | Usg9500 | - |
References
- http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200205-01-dos-enVendor Advisory
- http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200219-04-dos-enVendor Advisory
- http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200205-01-dos-enVendor Advisory
- http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200219-04-dos-enVendor Advisory
FAQ
What is CVE-2020-1858?
CVE-2020-1858 is a vulnerability with a CVSS score of 7.5 (HIGH). Huawei products NIP6800 versions V500R001C30, V500R001C60SPC500, and V500R005C00SPC100; Secospace USG6600 versions V500R001C30SPC600, V500R001C60SPC500, and V500R005C00SPC100; and USG9500 versions V50...
How severe is CVE-2020-1858?
CVE-2020-1858 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-1858?
Check the references section above for vendor advisories and patch information. Affected products include: Huawei Nip6800 Firmware, Huawei Nip6800, Huawei Secospace Usg6600 Firmware, Huawei Secospace Usg6600, Huawei Usg9500 Firmware.