CVE-2020-1814
Summary
| CVE | CVE-2020-1814 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2020-02-18 02:15:00 UTC |
| Updated | 2021-07-21 11:39:00 UTC |
| Description | Huawei NIP6800 versions V500R001C30, V500R001C60SPC500, and V500R005C00; Secospace USG6600 and USG9500 versions V500R001C30SPC200, V500R001C30SPC600, V500R001C60SPC500, and V500R005C00 have a Dangling pointer dereference vulnerability. An authenticated attacker may do some special operations in the affected products in some special scenarios to exploit the vulnerability. Due to improper race conditions of different operations, successful exploit will lead to Dangling pointer dereference, causing some service abnormal. |
Risk And Classification
Problem Types: CWE-119 | CWE-362
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Hardware | Huawei | Nip6800 | - | All | All | All |
| Hardware | Huawei | Nip6800 | - | All | All | All |
| Operating System | Huawei | Nip6800 Firmware | v500r001c30 | All | All | All |
| Operating System | Huawei | Nip6800 Firmware | v500r001c60spc500 | All | All | All |
| Operating System | Huawei | Nip6800 Firmware | v500r005c00 | All | All | All |
| Operating System | Huawei | Nip6800 Firmware | v500r001c30 | All | All | All |
| Operating System | Huawei | Nip6800 Firmware | v500r001c60spc500 | All | All | All |
| Operating System | Huawei | Nip6800 Firmware | v500r005c00 | All | All | All |
| Hardware | Huawei | Secospace Usg6600 | - | All | All | All |
| Hardware | Huawei | Secospace Usg6600 | - | All | All | All |
| Operating System | Huawei | Secospace Usg6600 Firmware | v500r001c30spc200 | All | All | All |
| Operating System | Huawei | Secospace Usg6600 Firmware | v500r001c30spc600 | All | All | All |
| Operating System | Huawei | Secospace Usg6600 Firmware | v500r001c60spc500 | All | All | All |
| Operating System | Huawei | Secospace Usg6600 Firmware | v500r005c00 | All | All | All |
| Operating System | Huawei | Secospace Usg6600 Firmware | v500r001c30spc200 | All | All | All |
| Operating System | Huawei | Secospace Usg6600 Firmware | v500r001c30spc600 | All | All | All |
| Operating System | Huawei | Secospace Usg6600 Firmware | v500r001c60spc500 | All | All | All |
| Operating System | Huawei | Secospace Usg6600 Firmware | v500r005c00 | All | All | All |
| Hardware | Huawei | Usg9500 | - | All | All | All |
| Hardware | Huawei | Usg9500 | - | All | All | All |
| Operating System | Huawei | Usg9500 Firmware | v500r001c30spc200 | All | All | All |
| Operating System | Huawei | Usg9500 Firmware | v500r001c30spc600 | All | All | All |
| Operating System | Huawei | Usg9500 Firmware | v500r001c60spc500 | All | All | All |
| Operating System | Huawei | Usg9500 Firmware | v500r005c00 | All | All | All |
| Operating System | Huawei | Usg9500 Firmware | v500r001c30spc200 | All | All | All |
| Operating System | Huawei | Usg9500 Firmware | v500r001c30spc600 | All | All | All |
| Operating System | Huawei | Usg9500 Firmware | v500r001c60spc500 | All | All | All |
| Operating System | Huawei | Usg9500 Firmware | v500r005c00 | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Security Advisory - Dangling Pointer Reference Vulnerability in Some Huawei Firewall Products | CONFIRM | www.huawei.com | Vendor Advisory |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.