Out of Bounds Read Vulnerabilities in Huawei Products
CVE-2020-1821
5.3MEDIUM
Key Information:
- Vendor
- Huawei
- Vendor
- CVE Published:
- 28 December 2024
Summary
Multiple out of bounds read vulnerabilities exist in the implementation of the Common Open Policy Service (COPS) protocol in certain Huawei devices. These vulnerabilities arise during the decoding of incoming data packets, which can result in an attacker reading memory that should not be accessible. Exploiting these vulnerabilities successfully can lead to significant service disruption on affected devices, impacting overall network reliability. It is crucial for users and administrators of Huawei devices to apply the necessary security patches to mitigate the risks associated with these vulnerabilities.
Affected Version(s)
IPS Module V500R001C30
IPS Module V500R001C60
IPS Module V500R005C00
References
CVSS V3.1
Score:
5.3
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved