CVE-2020-1824
CVSS 3.1 Score 5.3 of 10 (medium)
Details
Summary
CVE-2020-1824 represents a series of out-of-bounds read vulnerabilities discovered in the Common Open Policy Service (COPS) protocol implementation of certain Huawei products. Specifically, a decoding function in the product processes incoming data packets, leading to potential out-of-bounds read occurrences. Exploitation of these vulnerabilities could disrupt services on affected devices. The seven identified vulnerabilities, numbered CVE-2020-1818 through CVE-2020-1824, were assigned to this issue, with the others having similar implications. (Vulnerability IDs: HWPSIRT-2018-12275 through HWPSIRT-2018-12289)
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Products
- Huawei NGFW Module
- Huawei Nip6300
- Huawei Nip6600
- Huawei Secospace Usg6300
- Huawei Secospace Usg6600
Affected Vendors
- Huawei Technologies