First published: Fri Mar 20 2020(Updated: )
There is an improper integrity checking vulnerability on some huawei products. The software of the affected product has an improper integrity check which may allow an attacker with high privilege to make malicious modifications.Affected product versions include:HEGE-560 versions 1.0.1.21(SP3);HEGE-570 versions 1.0.1.22(SP3);OSCA-550 versions 1.0.1.21(SP3);OSCA-550A versions 1.0.1.21(SP3);OSCA-550AX versions 1.0.1.21(SP3);OSCA-550X versions 1.0.1.21(SP3).
Credit: psirt@huawei.com
Affected Software | Affected Version | How to fix |
---|---|---|
Huawei Hege-560 Firmware | =1.0.1.21\(sp3\) | |
Huawei HEGE-560 | ||
Huawei Hege-570 Firmware | =1.0.1.21\(sp3\) | |
Huawei HEGE-570 | ||
Huawei Osca-550 Firmware | =1.0.1.21\(sp3\) | |
Huawei OSCA-550 | ||
Huawei Osca-550a Firmware | =1.0.1.21\(sp3\) | |
Huawei Osca-550a | ||
Huawei Osca-550ax Firmware | =1.0.1.21\(sp3\) | |
Huawei Osca-550ax | ||
Huawei Osca-550x Firmware | =1.0.1.21\(sp3\) | |
Huawei Osca-550x |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2020-1879 is an improper integrity checking vulnerability on some Huawei products.
The affected Huawei products include HEGE-560 versions 1.0.1.21(SP3), HEGE-570 versions 1.0.1.21(SP3), and Huawei Osca-550 versions 1.0.1.21(SP3).
The severity of CVE-2020-1879 is low with a CVSS score of 3.9.
An attacker with high privileges can exploit CVE-2020-1879 to make malicious modifications.
Yes, you can find more information on CVE-2020-1879 at the following links: [Huawei Security Advisory 20200415-02](http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200415-02-dos-en) and [Huawei Security Advisory 20200311-01](https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200311-01-integrity-en).