Vulnerability Description
NIP6800;Secospace USG6600;USG9500 products with versions of V500R001C30; V500R001C60SPC500; V500R005C00SPC100 have have a resource management error vulnerability. An attacker needs to perform specific operations to trigger a function of the affected device. Due to improper resource management of the function, the vulnerability can be exploited to cause service abnormal on affected devices.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Huawei | Nip6800 Firmware | v500r001c30 |
| Huawei | Nip6800 | - |
| Huawei | Secospace Usg6600 Firmware | v500r001c30spc200 |
| Huawei | Secospace Usg6600 | - |
| Huawei | Usg9500 Firmware | v500r001c30spc200 |
| Huawei | Usg9500 | - |
| Huawei | Oceanstor 5310 Firmware | v500r007c60spc100 |
| Huawei | Oceanstor 5310 | 5.0 |
References
- http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200429-01-invalidVendor Advisory
- https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200219-02-resourVendor Advisory
- http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200429-01-invalidVendor Advisory
- https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200219-02-resourVendor Advisory
FAQ
What is CVE-2020-1881?
CVE-2020-1881 is a vulnerability with a CVSS score of 7.5 (HIGH). NIP6800;Secospace USG6600;USG9500 products with versions of V500R001C30; V500R001C60SPC500; V500R005C00SPC100 have have a resource management error vulnerability. An attacker needs to perform specific...
How severe is CVE-2020-1881?
CVE-2020-1881 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-1881?
Check the references section above for vendor advisories and patch information. Affected products include: Huawei Nip6800 Firmware, Huawei Nip6800, Huawei Secospace Usg6600 Firmware, Huawei Secospace Usg6600, Huawei Usg9500 Firmware.