Memory Leak Vulnerability in Huawei NIP6800 and Secospace USG Series
CVE-2020-1883

4.9MEDIUM

Key Information:

Vendor: Huawei
Status: Nip6800; Secospace Usg6600; Usg9500
Vendor: CVE Published:; 5 June 2020

Summary

Huawei products, including the NIP6800 and Secospace USG series, are affected by a memory leak vulnerability. This issue allows an attacker with high privileges to exploit the vulnerability by executing specific operations repeatedly. The exploitation can lead to abnormal service behavior, impacting the reliability and availability of the affected systems. Organizations using these products should ensure they are aware of this vulnerability and apply necessary security controls to mitigate potential risks.

Affected Version(s)

NIP6800 V500R001C60SPC500

Secospace USG6600 V500R001C30SPC200

Secospace USG6600 V500R001C30SPC600

References

https://www.huawei.com/en/psirt/security-advisories/huawe...

x_refsource_MISC

CVSS V3.1

Score:

4.9

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jun 5, 2020
Vulnerability Reserved
Nov 29, 2019