CVE-2020-1847

Published: Nov 13, 2020Modified: Nov 21, 2024

7.5

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploitability: 3.9 / Impact: 3.6

Source: NVD

Description

There is a denial of service vulnerability in some Huawei products. There is no protection against the attack scenario of specific protocol. A remote, unauthorized attackers can construct attack scenarios, which leads to denial of service.Affected product versions include:NIP6300 versions V500R001C30,V500R001C60;NIP6600 versions V500R001C30,V500R001C60;Secospace USG6300 versions V500R001C30,V500R001C60;Secospace USG6500 versions V500R001C30,V500R001C60;Secospace USG6600 versions V500R001C30,V500R001C60;USG9500 versions V500R001C30,V500R001C60.

Affected (12)

Products: Huawei: Nip6300 Firmware, Nip6600 Firmware, Secospace Usg6300 Firmware, Secospace Usg6500 Firmware, Secospace Usg6600 Firmware, Usg9500 Firmware

Huawei

6 products

Nip6300 Firmware

Nip6600 Firmware

Secospace Usg6300 Firmware

Secospace Usg6500 Firmware

Secospace Usg6600 Firmware

Usg9500 Firmware

Configuration A

2 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Huawei Nip6300 Firmware	Version v500r001c30
Huawei Nip6300 Firmware	Version v500r001c60

Running on/with	Platform Versions
Huawei Nip6300	All versions

Configuration B

2 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Huawei Nip6600 Firmware	Version v500r001c30
Huawei Nip6600 Firmware	Version v500r001c60

Running on/with	Platform Versions
Huawei Nip6600	All versions

Configuration C

2 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Huawei Secospace Usg6300 Firmware	Version v500r001c30
Huawei Secospace Usg6300 Firmware	Version v500r001c60

Running on/with	Platform Versions
Huawei Secospace Usg6300	All versions

Configuration D

2 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Huawei Secospace Usg6500 Firmware	Version v500r001c30
Huawei Secospace Usg6500 Firmware	Version v500r001c60

Running on/with	Platform Versions
Huawei Secospace Usg6500	All versions

Configuration E

2 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Huawei Secospace Usg6600 Firmware	Version v500r001c30
Huawei Secospace Usg6600 Firmware	Version v500r001c60

Running on/with	Platform Versions
Huawei Secospace Usg6600	All versions

Configuration F

2 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Huawei Usg9500 Firmware	Version v500r001c30
Huawei Usg9500 Firmware	Version v500r001c60

Running on/with	Platform Versions
Huawei Usg9500	All versions

References (2)

https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20201111-02-dos-en

Source: psirt@huawei.com

Vendor Advisory

https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20201111-02-dos-en

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.