CVE-2020-1824

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Published Dec 28, 2024
Updated: Jan 13, 2025
CWE ID 125

Summary

CVE-2020-1824 represents a series of out-of-bounds read vulnerabilities discovered in the Common Open Policy Service (COPS) protocol implementation of certain Huawei products. Specifically, a decoding function in the product processes incoming data packets, leading to potential out-of-bounds read occurrences. Exploitation of these vulnerabilities could disrupt services on affected devices. The seven identified vulnerabilities, numbered CVE-2020-1818 through CVE-2020-1824, were assigned to this issue, with the others having similar implications. (Vulnerability IDs: HWPSIRT-2018-12275 through HWPSIRT-2018-12289)

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Huawei NGFW Module
  • Huawei Nip6300
  • Huawei Nip6600
  • Huawei Secospace Usg6300
  • Huawei Secospace Usg6600

Affected Vendors

  • Huawei Technologies