CVE-2020-1841
First published: Mon Feb 17 2020(Updated: )
Huawei CloudLink Board version 20.0.0; DP300 version V500R002C00; RSE6500 versions V100R001C00, V500R002C00, and V500R002C00SPC900; and TE60 versions V500R002C00, V600R006C00, V600R006C00SPC200, V600R006C00SPC300, V600R006C10, V600R019C00, and V600R019C00SPC100 have an information leak vulnerability. An unauthenticated, remote attacker can make a large number of attempts to guess information. Successful exploitation may cause information leak.
Credit: psirt@huawei.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Huawei Cloudlink Board Firmware | =20.0.0 | |
| Huawei CloudLink Board | ||
| Huawei Dp300 Firmware | =v500r002c00 | |
| Huawei DP300 | ||
| Huawei Rse6500 Firmware | =v100r001c00 | |
| Huawei Rse6500 Firmware | =v500r002c00 | |
| Huawei Rse6500 Firmware | =v500r002c00spc900 | |
| Huawei Rse6500 | ||
| Huawei Te60 Firmware | =v500r002c00 | |
| Huawei Te60 Firmware | =v600r006c00 | |
| Huawei Te60 Firmware | =v600r006c00spc200 | |
| Huawei Te60 Firmware | =v600r006c00spc300 | |
| Huawei Te60 Firmware | =v600r006c10 | |
| Huawei Te60 Firmware | =v600r019c00 | |
| Huawei Te60 Firmware | =v600r019c00spc100 | |
| Huawei TE60 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID of this issue?
The vulnerability ID of this issue is CVE-2020-1841.
What systems are affected by this vulnerability?
Huawei CloudLink Board version 20.0.0, DP300 version V500R002C00, RSE6500 versions V100R001C00, V500R002C00, and V500R002C00SPC900, and TE60 versions V500R002C00, V600R006C00, V600R006C00SPC200, V600R006C00SPC300, V600R006C10, V600R019C00, and V600R019C00SPC100 are affected.
What is the severity of CVE-2020-1841?
The severity of CVE-2020-1841 is rated as high with a CVSS score of 7.5.
What is the recommended fix for this vulnerability?
Apply the necessary patches or updates provided by Huawei to address this vulnerability.
Where can I find more information about this vulnerability?
You can find more information about this vulnerability on the Huawei website.
- collector/nvd-index
- agent/severity
- agent/references
- agent/author
- agent/type
- agent/description
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- agent/softwarecombine
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/huawei
- canonical/huawei cloudlink board firmware
- version/huawei cloudlink board firmware/20.0.0
- canonical/huawei cloudlink board
- canonical/huawei dp300 firmware
- version/huawei dp300 firmware/v500r002c00
- canonical/huawei dp300
- canonical/huawei rse6500 firmware
- version/huawei rse6500 firmware/v100r001c00
- version/huawei rse6500 firmware/v500r002c00
- version/huawei rse6500 firmware/v500r002c00spc900
- canonical/huawei rse6500
- canonical/huawei te60 firmware
- version/huawei te60 firmware/v500r002c00
- version/huawei te60 firmware/v600r006c00
- version/huawei te60 firmware/v600r006c00spc200
- version/huawei te60 firmware/v600r006c00spc300
- version/huawei te60 firmware/v600r006c10
- version/huawei te60 firmware/v600r019c00
- version/huawei te60 firmware/v600r019c00spc100
- canonical/huawei te60