CVE-2020-1823 - Vulnerability Details

There are multiple out of bounds (OOB) read vulnerabilities in the implementation of the Common Open Policy Service (COPS) protocol of some Huawei products. The specific decoding function may occur out-of-bounds read when processes an incoming data packet. Successful exploit of these vulnerabilities may disrupt service on the affected device. (Vulnerability ID: HWPSIRT-2018-12275,HWPSIRT-2018-12276,HWPSIRT-2018-12277,HWPSIRT-2018-12278,HWPSIRT-2018-12279,HWPSIRT-2018-12280 and HWPSIRT-2018-12289) The seven vulnerabilities have been assigned seven Common Vulnerabilities and Exposures (CVE) IDs: CVE-2020-1818, CVE-2020-1819, CVE-2020-1820, CVE-2020-1821, CVE-2020-1822, CVE-2020-1823 and CVE-2020-1824.

No CVSS v4.0

Attack Vector Network

Attack Complexity High

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact Low

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Exploitation none

Automatable no

Technical Impact partial

Vendors	Products
Huawei	Ips Module Ips Module Firmware Ngfw Module Ngfw Module Firmware Nip6300 Nip6300 Firmware Nip6600 Nip6600 Firmware Nip6800 Nip6800 Firmware Secospace Usg6300 Secospace Usg6300 Firmware Secospace Usg6500 Secospace Usg6500 Firmware Secospace Usg6600 Secospace Usg6600 Firmware Usg6000v Usg6000v Firmware

Configuration 1 [-]

AND

OR	cpe:2.3:o:huawei:ips_module_firmware:v500r001c30:::::::*
	cpe:2.3:o:huawei:ips_module_firmware:v500r001c60:::::::*
	cpe:2.3:o:huawei:ips_module_firmware:v500r005c00:::::::*

cpe:2.3:h:huawei:ips_module:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND

OR	cpe:2.3:o:huawei:ngfw_module_firmware:v500r002c00:::::::*
	cpe:2.3:o:huawei:ngfw_module_firmware:v500r002c20:::::::*
	cpe:2.3:o:huawei:ngfw_module_firmware:v500r005c00:::::::*

cpe:2.3:h:huawei:ngfw_module:-:*:*:*:*:*:*:*

Configuration 3 [-]

AND

OR	cpe:2.3:o:huawei:nip6300_firmware:v500r001c30:::::::*
	cpe:2.3:o:huawei:nip6300_firmware:v500r001c60:::::::*
	cpe:2.3:o:huawei:nip6300_firmware:v500r005c00:::::::*

cpe:2.3:h:huawei:nip6300:-:*:*:*:*:*:*:*

Configuration 4 [-]

AND

OR	cpe:2.3:o:huawei:nip6600_firmware:v500r001c30:::::::*
	cpe:2.3:o:huawei:nip6600_firmware:v500r001c60:::::::*
	cpe:2.3:o:huawei:nip6600_firmware:v500r005c00:::::::*

cpe:2.3:h:huawei:nip6600:-:*:*:*:*:*:*:*

Configuration 5 [-]

AND

OR	cpe:2.3:o:huawei:nip6800_firmware:v500r001c60:::::::*
	cpe:2.3:o:huawei:nip6800_firmware:v500r005c00:::::::*

cpe:2.3:h:huawei:nip6800:-:*:*:*:*:*:*:*

Configuration 6 [-]

AND

OR	cpe:2.3:o:huawei:secospace_usg6300_firmware:v500r001c30:::::::*
	cpe:2.3:o:huawei:secospace_usg6300_firmware:v500r001c60:::::::*
	cpe:2.3:o:huawei:secospace_usg6300_firmware:v500r005c00:::::::*

cpe:2.3:h:huawei:secospace_usg6300:-:*:*:*:*:*:*:*

Configuration 7 [-]

AND

OR	cpe:2.3:o:huawei:secospace_usg6500_firmware:v500r001c30:::::::*
	cpe:2.3:o:huawei:secospace_usg6500_firmware:v500r001c60:::::::*
	cpe:2.3:o:huawei:secospace_usg6500_firmware:v500r005c00:::::::*

cpe:2.3:h:huawei:secospace_usg6500:-:*:*:*:*:*:*:*

Configuration 8 [-]

AND

OR	cpe:2.3:o:huawei:secospace_usg6600_firmware:v500r001c30:::::::*
	cpe:2.3:o:huawei:secospace_usg6600_firmware:v500r005c00:::::::*

cpe:2.3:h:huawei:secospace_usg6600:-:*:*:*:*:*:*:*

Configuration 9 [-]

AND

cpe:2.3:o:huawei:usg6000v_firmware:v500r003c00:*:*:*:*:*:*:*

cpe:2.3:h:huawei:usg6000v:-:*:*:*:*:*:*:*

No data.

References

Link	Providers
https://www.huawei.com/en/psirt/security-advisories/2020/huawei-sa-20191218-01-cops-en

History

Tue, 14 Jan 2025 08:45:00 +0000

Type	Values Removed	Values Added
First Time appeared		Huawei Huawei ips Module Huawei ips Module Firmware Huawei ngfw Module Huawei ngfw Module Firmware Huawei nip6300 Huawei nip6300 Firmware Huawei nip6600 Huawei nip6600 Firmware Huawei nip6800 Huawei nip6800 Firmware Huawei secospace Usg6300 Huawei secospace Usg6300 Firmware Huawei secospace Usg6500 Huawei secospace Usg6500 Firmware Huawei secospace Usg6600 Huawei secospace Usg6600 Firmware Huawei usg6000v Huawei usg6000v Firmware
CPEs		cpe:2.3:h:huawei:ips_module:-:::::::* cpe:2.3:h:huawei:ngfw_module:-:::::::* cpe:2.3:h:huawei:nip6300:-:::::::* cpe:2.3:h:huawei:nip6600:-:::::::* cpe:2.3:h:huawei:nip6800:-:::::::* cpe:2.3:h:huawei:secospace_usg6300:-:::::::* cpe:2.3:h:huawei:secospace_usg6500:-:::::::* cpe:2.3:h:huawei:secospace_usg6600:-:::::::* cpe:2.3:h:huawei:usg6000v:-:::::::* cpe:2.3:o:huawei:ips_module_firmware:v500r001c30:::::::* cpe:2.3:o:huawei:ips_module_firmware:v500r001c60:::::::* cpe:2.3:o:huawei:ips_module_firmware:v500r005c00:::::::* cpe:2.3:o:huawei:ngfw_module_firmware:v500r002c00:::::::* cpe:2.3:o:huawei:ngfw_module_firmware:v500r002c20:::::::* cpe:2.3:o:huawei:ngfw_module_firmware:v500r005c00:::::::* cpe:2.3:o:huawei:nip6300_firmware:v500r001c30:::::::* cpe:2.3:o:huawei:nip6300_firmware:v500r001c60:::::::* cpe:2.3:o:huawei:nip6300_firmware:v500r005c00:::::::* cpe:2.3:o:huawei:nip6600_firmware:v500r001c30:::::::* cpe:2.3:o:huawei:nip6600_firmware:v500r001c60:::::::* cpe:2.3:o:huawei:nip6600_firmware:v500r005c00:::::::* cpe:2.3:o:huawei:nip6800_firmware:v500r001c60:::::::* cpe:2.3:o:huawei:nip6800_firmware:v500r005c00:::::::* cpe:2.3:o:huawei:secospace_usg6300_firmware:v500r001c30:::::::* cpe:2.3:o:huawei:secospace_usg6300_firmware:v500r001c60:::::::* cpe:2.3:o:huawei:secospace_usg6300_firmware:v500r005c00:::::::* cpe:2.3:o:huawei:secospace_usg6500_firmware:v500r001c30:::::::* cpe:2.3:o:huawei:secospace_usg6500_firmware:v500r001c60:::::::* cpe:2.3:o:huawei:secospace_usg6500_firmware:v500r005c00:::::::* cpe:2.3:o:huawei:secospace_usg6600_firmware:v500r001c30:::::::* cpe:2.3:o:huawei:secospace_usg6600_firmware:v500r005c00:::::::* cpe:2.3:o:huawei:usg6000v_firmware:v500r003c00:::::::*
Vendors & Products		Huawei Huawei ips Module Huawei ips Module Firmware Huawei ngfw Module Huawei ngfw Module Firmware Huawei nip6300 Huawei nip6300 Firmware Huawei nip6600 Huawei nip6600 Firmware Huawei nip6800 Huawei nip6800 Firmware Huawei secospace Usg6300 Huawei secospace Usg6300 Firmware Huawei secospace Usg6500 Huawei secospace Usg6500 Firmware Huawei secospace Usg6600 Huawei secospace Usg6600 Firmware Huawei usg6000v Huawei usg6000v Firmware

Sat, 28 Dec 2024 17:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Sat, 28 Dec 2024 06:45:00 +0000

Type	Values Removed	Values Added
Description		There are multiple out of bounds (OOB) read vulnerabilities in the implementation of the Common Open Policy Service (COPS) protocol of some Huawei products. The specific decoding function may occur out-of-bounds read when processes an incoming data packet. Successful exploit of these vulnerabilities may disrupt service on the affected device. (Vulnerability ID: HWPSIRT-2018-12275,HWPSIRT-2018-12276,HWPSIRT-2018-12277,HWPSIRT-2018-12278,HWPSIRT-2018-12279,HWPSIRT-2018-12280 and HWPSIRT-2018-12289) The seven vulnerabilities have been assigned seven Common Vulnerabilities and Exposures (CVE) IDs: CVE-2020-1818, CVE-2020-1819, CVE-2020-1820, CVE-2020-1821, CVE-2020-1822, CVE-2020-1823 and CVE-2020-1824.
Weaknesses		CWE-125
References		https://www.huawei.com/en/psirt/security-advisories/2020/huawei-sa-20191218-01-cops-en
Metrics		cvssV3_1 `{'score': 3.7, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L'}`

MITRE

Status: PUBLISHED

Assigner: huawei

Published: 2024-12-28T06:29:49.051Z

Updated: 2024-12-28T16:33:45.933Z

Reserved: 2019-11-29T00:00:00.000Z

Link: CVE-2020-1823

Vulnrichment

Updated: 2024-12-28T16:33:40.854Z

NVD

Status : Analyzed

Published: 2024-12-28T07:15:18.357

Modified: 2025-01-13T18:39:37.540

Link: CVE-2020-1823

Redhat

No data.

Metrics

Attack Vector Network

Attack Complexity High

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact Low

User Interaction None

Exploitation none

Automatable no

Technical Impact partial

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object