7.5
CVE-2020-1860
- EPSS 0.11%
- Published 28.02.2020 19:15:11
- Last modified 21.11.2024 05:11:29
- Source psirt@huawei.com
- Teams watchlist Login
- Open Login
NIP6800;Secospace USG6600;USG9500 products with versions of V500R001C30; V500R001C60SPC500; V500R005C00SPC100 have an access control bypass vulnerability. Attackers that can access to the internal network can exploit this vulnerability with careful deployment. Successful exploit may cause the access control to be bypassed, and attackers can directly access the Internet.
Data is provided by the National Vulnerability Database (NVD)
Huawei ≫ Nip6800 Firmware Versionv500r001c30
Huawei ≫ Nip6800 Firmware Versionv500r001c60
Huawei ≫ Nip6800 Firmware Versionv500r005c00
Huawei ≫ Secospace Usg6600 Firmware Versionv500r001c30
Huawei ≫ Secospace Usg6600 Firmware Versionv500r001c60
Huawei ≫ Secospace Usg6600 Firmware Versionv500r005c00
Huawei ≫ Usg9500 Firmware Versionv500r001c30
Huawei ≫ Usg9500 Firmware Versionv500r001c60
Huawei ≫ Usg9500 Firmware Versionv500r005c00
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.11% | 0.297 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 3.9 | 3.6 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:N/I:P/A:N
|