CVE-2020-1847
First published: Fri Nov 13 2020(Updated: )
There is a denial of service vulnerability in some Huawei products. There is no protection against the attack scenario of specific protocol. A remote, unauthorized attackers can construct attack scenarios, which leads to denial of service.Affected product versions include:NIP6300 versions V500R001C30,V500R001C60;NIP6600 versions V500R001C30,V500R001C60;Secospace USG6300 versions V500R001C30,V500R001C60;Secospace USG6500 versions V500R001C30,V500R001C60;Secospace USG6600 versions V500R001C30,V500R001C60;USG9500 versions V500R001C30,V500R001C60.
Credit: psirt@huawei.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Huawei NIP6300 firmware | =v500r001c30 | |
| Huawei NIP6300 firmware | =v500r001c60 | |
| Huawei NIP6300 firmware | ||
| Huawei NIP6600 | =v500r001c30 | |
| Huawei NIP6600 | =v500r001c60 | |
| Huawei NIP6600 firmware | ||
| Huawei USG6300E firmware | =v500r001c30 | |
| Huawei USG6300E firmware | =v500r001c60 | |
| Huawei Secospace USG6300 firmware | ||
| Huawei Secospace USG6500 | =v500r001c30 | |
| Huawei Secospace USG6500 | =v500r001c60 | |
| Huawei Secospace USG6500 firmware | ||
| Huawei Secospace USG6600 firmware | =v500r001c30 | |
| Huawei Secospace USG6600 firmware | =v500r001c60 | |
| Huawei Secospace USG6600 firmware | ||
| Huawei USG9500 firmware | =v500r001c30 | |
| Huawei USG9500 firmware | =v500r001c60 | |
| Huawei Eudemon USG9500 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2020-1847?
CVE-2020-1847 is classified as a denial of service vulnerability.
How do I fix CVE-2020-1847?
To remediate CVE-2020-1847, update the affected Huawei NIP6300 and other specified firmware versions to the latest available release.
Which products are affected by CVE-2020-1847?
CVE-2020-1847 affects Huawei NIP6300, NIP6600, USG6300E, USG6500, USG6600, and USG9500 firmware versions as specified.
What type of attack is possible with CVE-2020-1847?
CVE-2020-1847 allows a remote, unauthorized attacker to perform a denial of service attack.
Are there any workarounds for CVE-2020-1847?
Currently, there are no specific workarounds for CVE-2020-1847 other than updating the affected firmware.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/severity
- agent/last-modified-date
- agent/author
- agent/first-publish-date
- agent/description
- agent/event
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-index
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/huawei
- canonical/huawei nip6300 firmware
- version/huawei nip6300 firmware/v500r001c30
- version/huawei nip6300 firmware/v500r001c60
- canonical/huawei nip6600
- version/huawei nip6600/v500r001c30
- version/huawei nip6600/v500r001c60
- canonical/huawei nip6600 firmware
- canonical/huawei usg6300e firmware
- version/huawei usg6300e firmware/v500r001c30
- version/huawei usg6300e firmware/v500r001c60
- canonical/huawei secospace usg6300 firmware
- canonical/huawei secospace usg6500
- version/huawei secospace usg6500/v500r001c30
- version/huawei secospace usg6500/v500r001c60
- canonical/huawei secospace usg6500 firmware
- canonical/huawei secospace usg6600 firmware
- version/huawei secospace usg6600 firmware/v500r001c30
- version/huawei secospace usg6600 firmware/v500r001c60
- canonical/huawei usg9500 firmware
- version/huawei usg9500 firmware/v500r001c30
- version/huawei usg9500 firmware/v500r001c60
- canonical/huawei eudemon usg9500