ID
VAR-202002-0604
CVE
CVE-2020-1875
TITLE
plural Huawei Product vulnerabilities to access to uninitialized pointers
Trust: 0.8
sources:
JVNDB: JVNDB-2020-002390
DESCRIPTION
NIP6800;Secospace USG6600;USG9500 products versions of V500R001C30; V500R001C60SPC500; V500R005C00SPC100 have an invalid pointer access vulnerability. The software system access an invalid pointer when an abnormal condition occurs in certain operation. Successful exploit could cause certain process reboot. Affected product versions include:NIP6800 versions V500R001C30,V500R001C60SPC500;Secospace USG6600 versions V500R001C30SPC200,V500R001C30SPC600,V500R001C60SPC500;USG9500 versions V500R001C30SPC200,V500R001C30SPC600,V500R001C60SPC500
Trust: 1.62
sources:
NVD: CVE-2020-1875 //
JVNDB: JVNDB-2020-002390
AFFECTED PRODUCTS
| vendor: | huawei | model: | secospace usg6600 | scope: | eq | version: | v500r001c30spc600 | Trust: 1.6 |
| vendor: | huawei | model: | usg9500 | scope: | eq | version: | v500r001c60spc500 | Trust: 1.6 |
| vendor: | huawei | model: | secospace usg6600 | scope: | eq | version: | v500r001c30spc200 | Trust: 1.6 |
| vendor: | huawei | model: | usg9500 | scope: | eq | version: | v500r001c30spc600 | Trust: 1.6 |
| vendor: | huawei | model: | usg9500 | scope: | eq | version: | v500r001c30spc200 | Trust: 1.6 |
| vendor: | huawei | model: | secospace usg6600 | scope: | eq | version: | v500r001c60spc500 | Trust: 1.6 |
| vendor: | huawei | model: | nip6800 | scope: | eq | version: | v500r001c30 | Trust: 1.6 |
| vendor: | huawei | model: | nip6800 | scope: | eq | version: | v500r001c60spc500 | Trust: 1.0 |
| vendor: | huawei | model: | nip6800 | scope: | - | version: | - | Trust: 0.8 |
| vendor: | huawei | model: | secospace usg6600 | scope: | - | version: | - | Trust: 0.8 |
| vendor: | huawei | model: | usg9500 | scope: | - | version: | - | Trust: 0.8 |
| vendor: | huawei | model: | nip6800 | scope: | eq | version: | - | Trust: 0.6 |
| vendor: | huawei | model: | usg9500 | scope: | eq | version: | - | Trust: 0.6 |
| vendor: | huawei | model: | secospace usg6600 | scope: | eq | version: | - | Trust: 0.6 |
sources:
JVNDB: JVNDB-2020-002390 //
CNNVD: CNNVD-202002-984 //
NVD: CVE-2020-1875
CVSS
SEVERITY | CVSSV2 | CVSSV3 | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|
|
sources:
JVNDB: JVNDB-2020-002390 //
CNNVD: CNNVD-202002-984 //
NVD: CVE-2020-1875
PROBLEMTYPE DATA
| problemtype: | CWE-824 | Trust: 1.8 |
sources:
JVNDB: JVNDB-2020-002390 //
NVD: CVE-2020-1875
THREAT TYPE
local
Trust: 0.6
sources:
CNNVD: CNNVD-202002-984
TYPE
buffer error
Trust: 0.6
sources:
CNNVD: CNNVD-202002-984
CONFIGURATIONS
sources:
JVNDB: JVNDB-2020-002390
PATCH
| title: | huawei-sa-20200219-01-wildpointer | url: | https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200219-01-wildpointer-en | Trust: 0.8 |
| title: | Huawei NIP6800 , Secospace USG6600 and USG9500 Buffer error vulnerability fix | url: | http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=111202 | Trust: 0.6 |
sources:
JVNDB: JVNDB-2020-002390 //
CNNVD: CNNVD-202002-984
EXTERNAL IDS
| db: | NVD | id: | CVE-2020-1875 | Trust: 2.4 |
| db: | JVNDB | id: | JVNDB-2020-002390 | Trust: 0.8 |
| db: | CNNVD | id: | CNNVD-202002-984 | Trust: 0.6 |
sources:
JVNDB: JVNDB-2020-002390 //
CNNVD: CNNVD-202002-984 //
NVD: CVE-2020-1875
REFERENCES
| url: | https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200219-01-wildpointer-en | Trust: 1.6 |
| url: | https://nvd.nist.gov/vuln/detail/cve-2020-1875 | Trust: 1.4 |
| url: | https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2020-1875 | Trust: 0.8 |
| url: | https://www.huawei.com/cn/psirt/security-advisories/huawei-sa-20200219-01-wildpointer-cn | Trust: 0.6 |
sources:
JVNDB: JVNDB-2020-002390 //
CNNVD: CNNVD-202002-984 //
NVD: CVE-2020-1875
SOURCES
| db: | JVNDB | id: | JVNDB-2020-002390 |
| db: | CNNVD | id: | CNNVD-202002-984 |
| db: | NVD | id: | CVE-2020-1875 |
LAST UPDATE DATE
2024-11-23T22:33:35.524000+00:00
SOURCES UPDATE DATE
| db: | JVNDB | id: | JVNDB-2020-002390 | date: | 2020-03-13T00:00:00 |
| db: | CNNVD | id: | CNNVD-202002-984 | date: | 2020-03-09T00:00:00 |
| db: | NVD | id: | CVE-2020-1875 | date: | 2024-11-21T05:11:31.483 |
SOURCES RELEASE DATE
| db: | JVNDB | id: | JVNDB-2020-002390 | date: | 2020-03-13T00:00:00 |
| db: | CNNVD | id: | CNNVD-202002-984 | date: | 2020-02-19T00:00:00 |
| db: | NVD | id: | CVE-2020-1875 | date: | 2020-02-28T19:15:11.967 |