CVE-2020-1877
Last modified
CVE-2020-1877 is a medium-severity vulnerability rated 4.4/10 on the CVSS scale. NIP6800;Secospace USG6600;USG9500 with versions of V500R001C30; V500R001C60SPC500; V500R005C00SPC100 have an invalid pointer access vulnerability. The software system access an invalid pointer when administrator log in to the device and performs some operations. EPSS estimates a 0.20% chance of exploitation in the next 30 days.
Description
NIP6800;Secospace USG6600;USG9500 with versions of V500R001C30; V500R001C60SPC500; V500R005C00SPC100 have an invalid pointer access vulnerability. The software system access an invalid pointer when administrator log in to the device and performs some operations. Successful exploit could cause certain process reboot.
Metrics
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Huawei | Nip6800 Firmware | v500r001c30 |
| Huawei | Nip6800 Firmware | v500r001c60spc500 |
| Huawei | Nip6800 Firmware | v500r005c00 |
| Huawei | Secospace Usg6600 Firmware | v500r001c30spc200 |
| Huawei | Secospace Usg6600 Firmware | v500r001c30spc600 |
| Huawei | Secospace Usg6600 Firmware | v500r001c60spc500 |
| Huawei | Secospace Usg6600 Firmware | v500r005c00 |
| Huawei | Usg9500 Firmware | v500r001c30spc200 |
| Huawei | Usg9500 Firmware | v500r001c30spc600 |
| Huawei | Usg9500 Firmware | v500r001c60spc500 |
| Huawei | Usg9500 Firmware | v500r005c00 |
References
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2020-1877?
How severe is CVE-2020-1877?
How do I fix CVE-2020-1877?
Are you affected by CVE-2020-1877?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST