Out-of-Bounds Read Vulnerability in Huawei USG6000V Devices
CVE-2020-1863
7.5HIGH
Summary
Huawei USG6000V devices contain a vulnerability due to a logical flaw in the JSON parsing routine. This out-of-bounds read could allow a remote, unauthenticated attacker to exploit the flaw, potentially disrupting service for users of the affected versions. Ensuring timely updates and patches is crucial for maintaining the security posture of these devices.
Affected Version(s)
Huawei USG6000V V500R001C20SPC300
Huawei USG6000V V500R003C00SPC100
Huawei USG6000V V500R005C00SPC100
References
CVSS V3.1
Score:
7.5
Severity:
HIGH
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved