CVE-2020-1883

CWE-401 — Memory Leak CWE-7723 documents3 sources

Severity

4.9MEDIUM

EPSS

0.2%

top 63.45%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Huawei Nip6800 Firmware Huawei Secospace Usg6600 Firmware Huawei Usg9500 Firmware

Timeline

PublishedJun 5

Latest updateMay 24

Description

Huawei products NIP6800;Secospace USG6600;USG9500 have a memory leak vulnerability. An attacker with high privileges exploits this vulnerability by continuously performing specific operations. Successful exploitation of this vulnerability can cause service abnormal.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:HExploitability: 1.2 | Impact: 3.6

Affected Packages6 packages

▶NVDhuawei/secospace_usg6600_firmwarev500r001c30spc200, v500r001c30spc600, v500r001c60spc500+2

▶CVEListV5secospace_usg6600V500R001C30SPC200, V500R001C30SPC600, V500R001C60SPC500+2

▶NVDhuawei/nip6800_firmwarev500r001c60spc500

▶NVDhuawei/usg9500_firmwarev500r001c30spc200, v500r001c30spc600, v500r001c60spc500+2

▶CVEListV5nip6800V500R001C60SPC500

🔴Vulnerability Details

GHSA

GHSA-f9q6-fjfw-vhwc: Huawei products NIP6800;Secospace USG6600;USG9500 have a memory leak vulnerability↗2022-05-24

▶

CVEList

CVE-2020-1883: Huawei products NIP6800;Secospace USG6600;USG9500 have a memory leak vulnerability↗2020-06-05

▶