CVE-2020-1862

3.3LOW

Key Information:

Vendor: Huawei
Status: Campusinsight;manageone
Vendor: CVE Published:; 20 March 2020

Summary

There is a double free vulnerability in some Huawei products. A local attacker with low privilege may perform some operations to exploit the vulnerability. Due to doubly freeing memory, successful exploit may cause some service abnormal. Affected product versions include:CampusInsight versions V100R019C00;ManageOne versions 6.5.RC2.B050.

Affected Version(s)

CampusInsight;ManageOne V100R019C00

CampusInsight;ManageOne 6.5.RC2.B050

References

https://www.huawei.com/en/psirt/security-advisories/huawe...

x_refsource_MISC

CVSS V3.1

Score:

3.3

Severity:

LOW

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Mar 20, 2020
Vulnerability Reserved
Nov 29, 2019