CVE-2020-1825Improper Input Validation in Huawei Fusionaccess

CWE-20Improper Input Validation3 documents3 sources
Severity
6.5MEDIUMNVD
EPSS
0.2%
top 61.17%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Huawei Fusionaccess
Timeline
PublishedJun 15
Latest updateMay 24

Description

FusionAccess with versions earlier than 6.5.1.SPC002 have a Denial of Service (DoS) vulnerability. Due to insufficient verification on specific input, attackers can exploit this vulnerability by sending constructed messages to the affected device through another device on the same network. Successful exploit could cause affected devices to be abnormal.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 2.8 | Impact: 3.6

Affected Packages2 packages

NVDhuawei/fusionaccess< 6.5.1.spc002
CVEListV5huawei/fusionaccessVersions earlier than 6.5.1.SPC002

🔴Vulnerability Details

2
GHSA
GHSA-9fxg-j66g-hxgc: Huawei FusionAccess products with versions earlier than 62022-05-24
CVEList
CVE-2020-1825: FusionAccess with versions earlier than 62020-06-15
CVE-2020-1825 — Improper Input Validation in Huawei | cvebase