Invalid Pointer Access Vulnerability in Huawei Secospace and NIP6800 Products
CVE-2020-1875
5.5MEDIUM
Key Information:
- Vendor
- Huawei
- Vendor
- CVE Published:
- 28 February 2020
Summary
Huawei's NIP6800 and Secospace product lines have a vulnerability that results from the software attempting to access an invalid pointer during specific abnormal conditions. This flaw, if successfully exploited, may lead to an unexpected reboot of affected processes. The issue affects numerous versions across NIP6800 and Secospace devices, highlighting the need for immediate review and remediation to ensure system integrity.
Affected Version(s)
NIP6800;Secospace USG6600;USG9500 V500R001C30,V500R001C60SPC500
NIP6800;Secospace USG6600;USG9500 V500R001C30SPC200,V500R001C30SPC600,V500R001C60SPC500
References
CVSS V3.1
Score:
5.5
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved