Lucene search

[email protected]CVE-2020-1841

HistoryFeb 17, 2020 - 9:15 p.m.

CVE-2020-1841

2020-02-1721:15:00

NVD-CWE-noinfo

[email protected]

web.nvd.nist.gov

cve-2020-1841

huawei

cloudlink

board

dp300

rse6500

te60

information leak

vulnerability

nvd

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

7.4 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.004 Low

EPSS

Percentile

72.8%

JSON

Huawei CloudLink Board version 20.0.0; DP300 version V500R002C00; RSE6500 versions V100R001C00, V500R002C00, and V500R002C00SPC900; and TE60 versions V500R002C00, V600R006C00, V600R006C00SPC200, V600R006C00SPC300, V600R006C10, V600R019C00, and V600R019C00SPC100 have an information leak vulnerability. An unauthenticated, remote attacker can make a large number of attempts to guess information. Successful exploitation may cause information leak.

CPENameOperatorVersion
huawei:cloudlink_board_firmwarehuawei cloudlink board firmwareeq20.0.0
huawei:dp300_firmwarehuawei dp300 firmwareeqv500r002c00
huawei:rse6500_firmwarehuawei rse6500 firmwareeqv100r001c00
huawei:rse6500_firmwarehuawei rse6500 firmwareeqv500r002c00
huawei:rse6500_firmwarehuawei rse6500 firmwareeqv500r002c00spc900
huawei:te60_firmwarehuawei te60 firmwareeqv500r002c00
huawei:te60_firmwarehuawei te60 firmwareeqv600r006c00
huawei:te60_firmwarehuawei te60 firmwareeqv600r006c00spc200
huawei:te60_firmwarehuawei te60 firmwareeqv600r006c00spc300
huawei:te60_firmwarehuawei te60 firmwareeqv600r006c10

CPE	Name	Operator	Version
huawei:cloudlink_board_firmware	huawei cloudlink board firmware	eq	20.0.0
huawei:dp300_firmware	huawei dp300 firmware	eq	v500r002c00
huawei:rse6500_firmware	huawei rse6500 firmware	eq	v100r001c00
huawei:rse6500_firmware	huawei rse6500 firmware	eq	v500r002c00
huawei:rse6500_firmware	huawei rse6500 firmware	eq	v500r002c00spc900
huawei:te60_firmware	huawei te60 firmware	eq	v500r002c00
huawei:te60_firmware	huawei te60 firmware	eq	v600r006c00
huawei:te60_firmware	huawei te60 firmware	eq	v600r006c00spc200
huawei:te60_firmware	huawei te60 firmware	eq	v600r006c00spc300
huawei:te60_firmware	huawei te60 firmware	eq	v600r006c10

Rows per page:

1-10 of 121

References

www.huawei.com/en/psirt/security-advisories/huawei-sa-20200207-01-te-en

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

7.4 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.004 Low

EPSS

Percentile

72.8%

JSON

Related for CVE-2020-1841

cvelist1 huawei1 prion1