CVE-2020-1857

🗓️ 17 Feb 2020 20:01:03Reported by huaweiType

Huawei NIP6800 and Secospace USG6600/USG9500 versions V500R001C30, V500R001C60SPC500, V500R005C00SPC100 have information leakage vulnerability. Local authenticated attacker can exploit it

Reporter	Title	Published	Views	Family All 7
CNVD	Huawei NIP6800, Secospace USG6600 and USG9500 Information Disclosure Vulnerabilities	9 Mar 202000:00	–	cnvd
Cvelist	CVE-2020-1857	17 Feb 202020:01	–	cvelist
EUVD	EUVD-2020-12683	7 Oct 202500:30	–	euvd
Huawei	Security Advisory - Information leakage Vulnerability in Some Huawei Products	5 Feb 202000:00	–	huawei
NVD	CVE-2020-1857	17 Feb 202020:15	–	nvd
Prion	Information disclosure	17 Feb 202020:15	–	prion
RedhatCVE	CVE-2020-1857	22 May 202517:40	–	redhatcve

NVD

Vulners

Node

huawei nip6800_firmwareMatchv500r001c30

huawei nip6800_firmwareMatchv500r001c60spc500

huawei nip6800_firmwareMatchv500r005c00spc100

AND

huawei nip6800Match-

Node

huawei secospace_usg6600_firmwareMatchv500r001c30spc200

huawei secospace_usg6600_firmwareMatchv500r001c30spc600

huawei secospace_usg6600_firmwareMatchv500r001c60spc500

huawei secospace_usg6600_firmwareMatchv500r005c00spc100

AND

huawei secospace_usg6600Match-

Node

huawei usg9500_firmwareMatchv500r001c30spc200

huawei usg9500_firmwareMatchv500r001c30spc600

huawei usg9500_firmwareMatchv500r001c60spc500

huawei usg9500_firmwareMatchv500r005c00spc100

AND

huawei usg9500Match-

[
  {
    "product": "NIP6800",
    "vendor": "Huawei",
    "versions": [
      {
        "status": "affected",
        "version": "V500R001C30"
      },
      {
        "status": "affected",
        "version": "V500R001C60SPC500"
      },
      {
        "status": "affected",
        "version": "V500R005C00SPC100"
      }
    ]
  },
  {
    "product": "Secospace USG6600",
    "vendor": "Huawei",
    "versions": [
      {
        "status": "affected",
        "version": "V500R001C30SPC200"
      },
      {
        "status": "affected",
        "version": "V500R001C30SPC600"
      },
      {
        "status": "affected",
        "version": "V500R001C60SPC500"
      },
      {
        "status": "affected",
        "version": "V500R005C00SPC100"
      }
    ]
  },
  {
    "product": "USG9500",
    "vendor": "Huawei",
    "versions": [
      {
        "status": "affected",
        "version": "V500R001C30SPC200"
      },
      {
        "status": "affected",
        "version": "V500R001C30SPC600"
      },
      {
        "status": "affected",
        "version": "V500R001C60SPC500"
      },
      {
        "status": "affected",
        "version": "V500R005C00SPC100"
      }
    ]
  }
]

Source	Link
huawei	www.huawei.com/en/psirt/security-advisories/huawei-sa-20200205-01-leakage-en

21 Nov 2024 05:11Current

5.2Medium risk

Vulners AI Score5.2

CVSS 22.1

CVSS 3.15.5

EPSS0.0006