Denial of Service Vulnerability in Huawei Network Products
CVE-2020-1847

7.5HIGH

Key Information:

Vendor: Huawei
Status: Nip6300;nip6600;secospace Usg6300;secospace Usg6500;secospace Usg6600;usg9500
Vendor: CVE Published:; 13 November 2020

Summary

A denial of service vulnerability exists in multiple Huawei network products, allowing remote, unauthorized attackers to exploit specific protocol weaknesses. By crafting particular attack scenarios, they can disrupt service availability, impacting the functionality of affected devices. The vulnerability affects several models within the NIP and Secospace product lines, making it crucial for organizations utilizing these devices to implement necessary security measures.

Affected Version(s)

NIP6300;NIP6600;Secospace USG6300;Secospace USG6500;Secospace USG6600;USG9500 V500R001C30,V500R001C60

References

https://www.huawei.com/en/psirt/security-advisories/huawe...

x_refsource_MISC

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Nov 13, 2020
Vulnerability Reserved
Nov 29, 2019