Security Advisory - Distributed Denial-of-Service Vulnerablility in Some Huawei Products

2020-08-2600:00:00

Huawei Technologies

www.huawei.com

8.6 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.021 Low

EPSS

Percentile

88.9%

JSON

There is a DDoS vulnerability called “NXNSAttack” in some Huawei products. There is no effective limitation on the number of fetches performed when the DNS recursive server processes references. An attacker can exploit this vulnerability by sending a request for an attacker-controlled domain to a vulnerable DNS resolving server. Successful exploit can lead to a performance degradation of the recursive server, while the recursive server can also act as a reflector, resulting in a DDoS attack to target authoritative servers. (Vulnerability ID: HWPSIRT-2020-05822)

This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2020-8616.

Huawei has released software updates to fix this vulnerability. This advisory is available at the following link:

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200826-01-ddos-en

CPENameOperatorVersion
smc2.0eqV600R006C00
smc2.0eqV600R006C00SPC200
smc2.0eqV600R006C10
smc2.0eqV600R006C10SPC200
smc2.0eqV600R006C10SPC300
smc2.0eqV600R006C10SPC500
smc2.0eqV600R019C00
smc2.0eqV600R019C10

Name	Operator	Version
smc2.0	eq	V600R006C00
smc2.0	eq	V600R006C00SPC200
smc2.0	eq	V600R006C10
smc2.0	eq	V600R006C10SPC200
smc2.0	eq	V600R006C10SPC300
smc2.0	eq	V600R006C10SPC500
smc2.0	eq	V600R019C00
smc2.0	eq	V600R019C10