First published: Sat Dec 28 2024(Updated: )
There are multiple out of bounds (OOB) read vulnerabilities in the implementation of the Common Open Policy Service (COPS) protocol of some Huawei products. The specific decoding function may occur out-of-bounds read when processes an incoming data packet. Successful exploit of these vulnerabilities may disrupt service on the affected device. (Vulnerability ID: HWPSIRT-2018-12275,HWPSIRT-2018-12276,HWPSIRT-2018-12277,HWPSIRT-2018-12278,HWPSIRT-2018-12279,HWPSIRT-2018-12280 and HWPSIRT-2018-12289) The seven vulnerabilities have been assigned seven Common Vulnerabilities and Exposures (CVE) IDs: CVE-2020-1818, CVE-2020-1819, CVE-2020-1820, CVE-2020-1821, CVE-2020-1822, CVE-2020-1823 and CVE-2020-1824.
Credit: psirt@huawei.com
Affected Software | Affected Version | How to fix |
---|---|---|
All of | ||
Any of | ||
Huawei IPS firmware | =v500r001c30 | |
Huawei IPS firmware | =v500r001c60 | |
Huawei IPS firmware | =v500r005c00 | |
Huawei IPS Module firmware | ||
All of | ||
Any of | ||
Huawei NGFW Module firmware | =v500r002c00 | |
Huawei NGFW Module firmware | =v500r002c20 | |
Huawei NGFW Module firmware | =v500r005c00 | |
Huawei NGFW Module | ||
All of | ||
Any of | ||
Huawei NIP6300 firmware | =v500r001c30 | |
Huawei NIP6300 firmware | =v500r001c60 | |
Huawei NIP6300 firmware | =v500r005c00 | |
Huawei NIP6300 firmware | ||
All of | ||
Any of | ||
Huawei NIP6600 | =v500r001c30 | |
Huawei NIP6600 | =v500r001c60 | |
Huawei NIP6600 | =v500r005c00 | |
Huawei NIP6600 firmware | ||
All of | ||
Any of | ||
Huawei NIP6800 Firmware | =v500r001c60 | |
Huawei NIP6800 Firmware | =v500r005c00 | |
Huawei NIP6800 Firmware | ||
All of | ||
Any of | ||
Huawei Secospace USG6300 Firmware | =v500r001c30 | |
Huawei Secospace USG6300 Firmware | =v500r001c60 | |
Huawei Secospace USG6300 Firmware | =v500r005c00 | |
Huawei Secospace USG6300 firmware | ||
All of | ||
Any of | ||
Huawei Secospace USG6500 | =v500r001c30 | |
Huawei Secospace USG6500 | =v500r001c60 | |
Huawei Secospace USG6500 | =v500r005c00 | |
Huawei Secospace USG6500 firmware | ||
All of | ||
Any of | ||
Huawei Secospace USG6600 firmware | =v500r001c30 | |
Huawei Secospace USG6600 firmware | =v500r005c00 | |
Huawei Secospace USG6600 firmware | ||
All of | ||
Huawei USG6000V firmware | =v500r003c00 | |
Huawei USG6000V firmware |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2020-1821 is classified as a high severity vulnerability due to the potential for out-of-bounds read exploits.
To fix CVE-2020-1821, update the affected Huawei devices to the latest firmware versions provided by Huawei.
CVE-2020-1821 affects various Huawei products including the IPS Module, NGFW Module, NIP6300, NIP6600, NIP6800, Secospace USG6300, USG6500, USG6600, and USG6000V firmware.
CVE-2020-1821 is categorized as an out-of-bounds read vulnerability within the implementation of the Common Open Policy Service (COPS) protocol.
Yes, successful exploitation of CVE-2020-1821 may allow attackers to conduct remote exploits against the vulnerable systems.