CVE-2020-1874
Last modified
CVE-2020-1874 is a medium-severity vulnerability rated 5.5/10 on the CVSS scale. NIP6800;Secospace USG6600;USG9500 products versions of V500R001C30; V500R001C60SPC500; V500R005C00SPC100 have a invalid pointer access vulnerability. The software system access an invalid pointer when operator logs in to the device and performs some operations. EPSS estimates a 0.20% chance of exploitation in the next 30 days.
Description
NIP6800;Secospace USG6600;USG9500 products versions of V500R001C30; V500R001C60SPC500; V500R005C00SPC100 have a invalid pointer access vulnerability. The software system access an invalid pointer when operator logs in to the device and performs some operations. Successful exploit could cause certain process reboot.
Metrics
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Huawei | Nip6800 Firmware | v500r001c30 |
| Huawei | Nip6800 Firmware | v500r001c60spc500 |
| Huawei | Nip6800 Firmware | v500r005c00spc100 |
| Huawei | Secospace Usg6600 Firmware | v500r001c30spc200 |
| Huawei | Secospace Usg6600 Firmware | v500r001c30spc600 |
| Huawei | Secospace Usg6600 Firmware | v500r001c60spc500 |
| Huawei | Secospace Usg6600 Firmware | v500r005c00spc100 |
| Huawei | Usg9500 Firmware | v500r001c30spc200 |
| Huawei | Usg9500 Firmware | v500r001c30spc600 |
| Huawei | Usg9500 Firmware | v500r001c60spc500 |
| Huawei | Usg9500 Firmware | v500r005c00spc100 |
References
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2020-1874?
How severe is CVE-2020-1874?
How do I fix CVE-2020-1874?
Are you affected by CVE-2020-1874?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST