Description
There are multiple out of bounds (OOB) read vulnerabilities in the implementation of the Common Open Policy Service (COPS) protocol of some Huawei products. The specific decoding function may occur out-of-bounds read when processes an incoming data packet. Successful exploit of these vulnerabilities may disrupt service on the affected device. (Vulnerability ID: HWPSIRT-2018-12275,HWPSIRT-2018-12276,HWPSIRT-2018-12277,HWPSIRT-2018-12278,HWPSIRT-2018-12279,HWPSIRT-2018-12280 and HWPSIRT-2018-12289) The seven vulnerabilities have been assigned seven Common Vulnerabilities and Exposures (CVE) IDs: CVE-2020-1818, CVE-2020-1819, CVE-2020-1820, CVE-2020-1821, CVE-2020-1822, CVE-2020-1823 and CVE-2020-1824.
CVSS breakdown
CVSS 3.1
Attack Vector
Network
Attack Complexity
High
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
Low
Affected products
- Huawei / IPS ModuleV500R001C30 – V500R001C30
- Huawei / IPS ModuleV500R001C60 – V500R001C60
- Huawei / IPS ModuleV500R005C00 – V500R005C00
- Huawei / NGFW ModuleV500R002C00 – V500R002C00
- Huawei / NGFW ModuleV500R002C20 – V500R002C20
- Huawei / NGFW ModuleV500R005C00 – V500R005C00
- Huawei / NIP6300V500R001C30 – V500R001C30
- Huawei / NIP6300V500R001C60 – V500R001C60
- Huawei / NIP6300V500R005C00 – V500R005C00
- Huawei / NIP6600V500R001C30 – V500R001C30
- Huawei / NIP6600V500R001C60 – V500R001C60
- Huawei / NIP6600V500R005C00 – V500R005C00
- Huawei / NIP6800V500R001C60 – V500R001C60
- Huawei / NIP6800V500R005C00 – V500R005C00
- Huawei / Secospace USG6300V500R001C30 – V500R001C30
- Huawei / Secospace USG6300V500R001C60 – V500R001C60
- Huawei / Secospace USG6300V500R005C00 – V500R005C00
- Huawei / Secospace USG6500V500R001C30 – V500R001C30
- Huawei / Secospace USG6500V500R001C60 – V500R001C60
- Huawei / Secospace USG6500V500R005C00 – V500R005C00
- Huawei / Secospace USG6600V500R001C30 – V500R001C30
- Huawei / Secospace USG6600V500R005C00 – V500R005C00
- Huawei / USG6000VV500R003C00 – V500R003C00