Lucene search

[email protected]CVE-2020-1828

HistoryFeb 17, 2020 - 8:15 p.m.

CVE-2020-1828

2020-02-1720:15:11

CWE-125

CWE-20

[email protected]

web.nvd.nist.gov

huawei

nip6800

secospace

usg6600

usg9500

input validation

vulnerability

out-of-bound read

ipsec

cve-2020-1828

nvd

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.001 Low

EPSS

Percentile

42.6%

JSON

Huawei NIP6800 versions V500R001C30, V500R001C60SPC500, and V500R005C00; and Secospace USG6600 and USG9500 versions V500R001C30SPC200, V500R001C30SPC600, V500R001C60SPC500, and V500R005C00 have an input validation vulnerability where the IPSec module does not validate a field in a specific message. Attackers can send specific message to cause out-of-bound read, compromising normal service.

Affected configurations

NVD

Node

huaweinip6800_firmwareMatchv500r001c30

huaweinip6800_firmwareMatchv500r001c60spc500

huaweinip6800_firmwareMatchv500r005c00

AND

huaweinip6800Match-

Node

huaweisecospace_usg6600_firmwareMatchv500r001c30spc200

huaweisecospace_usg6600_firmwareMatchv500r001c30spc600

huaweisecospace_usg6600_firmwareMatchv500r001c60spc500

huaweisecospace_usg6600_firmwareMatchv500r005c00

AND

huaweisecospace_usg6600Match-

Node

huaweiusg9500_firmwareMatchv500r001c30spc200

huaweiusg9500_firmwareMatchv500r001c30spc600

huaweiusg9500_firmwareMatchv500r001c60spc500

huaweiusg9500_firmwareMatchv500r005c00

AND

huaweiusg9500Match-

CPENameOperatorVersion
huawei:nip6800_firmwarehuawei nip6800 firmwareeqv500r001c30
huawei:nip6800_firmwarehuawei nip6800 firmwareeqv500r001c60spc500
huawei:nip6800_firmwarehuawei nip6800 firmwareeqv500r005c00

CPE	Name	Operator	Version
huawei:nip6800_firmware	huawei nip6800 firmware	eq	v500r001c30
huawei:nip6800_firmware	huawei nip6800 firmware	eq	v500r001c60spc500
huawei:nip6800_firmware	huawei nip6800 firmware	eq	v500r005c00

CNA Affected

[
  {
    "product": "NIP6800",
    "vendor": "Huawei",
    "versions": [
      {
        "status": "affected",
        "version": "V500R001C30"
      },
      {
        "status": "affected",
        "version": "V500R001C60SPC500"
      },
      {
        "status": "affected",
        "version": "V500R005C00"
      }
    ]
  },
  {
    "product": "Secospace USG6600",
    "vendor": "Huawei",
    "versions": [
      {
        "status": "affected",
        "version": "V500R001C30SPC200"
      },
      {
        "status": "affected",
        "version": "V500R001C30SPC600"
      },
      {
        "status": "affected",
        "version": "V500R001C60SPC500"
      },
      {
        "status": "affected",
        "version": "V500R005C00"
      }
    ]
  },
  {
    "product": "USG9500",
    "vendor": "Huawei",
    "versions": [
      {
        "status": "affected",
        "version": "V500R001C30SPC200"
      },
      {
        "status": "affected",
        "version": "V500R001C30SPC600"
      },
      {
        "status": "affected",
        "version": "V500R001C60SPC500"
      },
      {
        "status": "affected",
        "version": "V500R005C00"
      }
    ]
  }
]

References

www.huawei.com/en/psirt/security-advisories/huawei-sa-20200212-01-ipsec-en

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.001 Low

EPSS

Percentile

42.6%

JSON

Related for CVE-2020-1828

huawei2 cvelist1 prion1 nvd1