Information disclosure

2020-02-1720:15:00

PRIOn knowledge base

www.prio-n.com

5.2 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

Huawei NIP6800 versions V500R001C30, V500R001C60SPC500, and V500R005C00SPC100; and Secospace USG6600 and USG9500 versions V500R001C30SPC200, V500R001C30SPC600, V500R001C60SPC500, and V500R005C00SPC100 have an information leakage vulnerability. Due to improper processing of some data, a local authenticated attacker can exploit this vulnerability through a series of operations. Successful exploitation may cause information leakage.

CPENameOperatorVersion
nip6800_firmwareeq500r1c30-v
nip6800_firmwareeq500r1c60spc500-v
nip6800_firmwareeq500r5c0spc100-v
secospace_usg6600_firmwareeq500r1c30spc200-v
secospace_usg6600_firmwareeq500r1c30spc600-v
secospace_usg6600_firmwareeq500r1c60spc500-v
secospace_usg6600_firmwareeq500r5c0spc100-v
usg9500_firmwareeq500r1c30spc200-v
usg9500_firmwareeq500r1c30spc600-v
usg9500_firmwareeq500r1c60spc500-v

Name	Operator	Version
nip6800_firmware	eq	500r1c30-v
nip6800_firmware	eq	500r1c60spc500-v
nip6800_firmware	eq	500r5c0spc100-v
secospace_usg6600_firmware	eq	500r1c30spc200-v
secospace_usg6600_firmware	eq	500r1c30spc600-v
secospace_usg6600_firmware	eq	500r1c60spc500-v
secospace_usg6600_firmware	eq	500r5c0spc100-v
usg9500_firmware	eq	500r1c30spc200-v
usg9500_firmware	eq	500r1c30spc600-v
usg9500_firmware	eq	500r1c60spc500-v