CVE-2020-1879
Published Mar 20, 2020
Last updated 2 years ago
Overview
- Description
- There is an improper integrity checking vulnerability on some huawei products. The software of the affected product has an improper integrity check which may allow an attacker with high privilege to make malicious modifications.Affected product versions include:HEGE-560 versions 1.0.1.21(SP3);HEGE-570 versions 1.0.1.22(SP3);OSCA-550 versions 1.0.1.21(SP3);OSCA-550A versions 1.0.1.21(SP3);OSCA-550AX versions 1.0.1.21(SP3);OSCA-550X versions 1.0.1.21(SP3).
- Source
- psirt@huawei.com
- NVD status
- Analyzed
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 3.9
- Impact score
- 3.6
- Exploitability score
- 0.3
- Vector string
- CVSS:3.1/AV:P/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N
- Severity
- LOW
CVSS 2.0
- Type
- Primary
- Base score
- 3.6
- Impact score
- 4.9
- Exploitability score
- 3.9
- Vector string
- AV:L/AC:L/Au:N/C:N/I:P/A:P
Weaknesses
- nvd@nist.gov
- CWE-354
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:huawei:hege-560_firmware:1.0.1.21\\(sp3\\):*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6C033281-C8B1-48AF-A8E8-30863E778C10"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:huawei:hege-560:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "3325D5D9-8956-4335-B616-C553BF885152"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:huawei:hege-570_firmware:1.0.1.21\\(sp3\\):*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "20A6C8F0-9016-413D-B7CF-BA046B7A32CE"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:huawei:hege-570:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "35F5ADA7-C184-47D2-BD05-029162462E1A"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:huawei:osca-550_firmware:1.0.1.21\\(sp3\\):*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5785116E-F7CF-49BA-8833-98913F81630C"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:huawei:osca-550:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "C0D0122F-89FF-4B3E-8837-2E07A0D27105"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:huawei:osca-550a_firmware:1.0.1.21\\(sp3\\):*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B2A17B82-6007-416F-8EB8-19A73EDEF52B"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:huawei:osca-550a:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "5D4E574D-DEFF-48CC-81F0-28DB6432EF13"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:huawei:osca-550ax_firmware:1.0.1.21\\(sp3\\):*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "EAFE434F-2C9A-4B04-A916-0E9BBB940EDF"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:huawei:osca-550ax:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "62EEE25C-2FA4-4B64-9680-387380D97352"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:huawei:osca-550x_firmware:1.0.1.21\\(sp3\\):*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "42AD7C07-1559-45F3-A364-1F9AB8D0B4E7"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:huawei:osca-550x:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "565AF527-86EF-4314-A645-B99D0C4C62C2"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]