CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-1799

E6878-370 with versions of 10.0.3.1(H557SP27C233), 10.0.3.1(H563SP1C00), 10.0.3.1(H563SP1C233) has a use after free vulnerability. The software references memory after it has been freed in certain scenario, the attacker does a series of crafted operations through web portal, successful exploit could cause a use after free condition which may lead to malicious code execution.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 21.4%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.4

References

Products affected by CVE-2020-1799

Huawei » E6878-370 » Version: N/A

cpe:2.3:h:huawei:e6878-370:-
Huawei » E6878-370 Firmware » Version: 10.0.3.1(h557sp27c233)

cpe:2.3:o:huawei:e6878-370_firmware:10.0.3.1(h557sp27c233)
Huawei » E6878-370 Firmware » Version: 10.0.3.1(h563sp1c00)

cpe:2.3:o:huawei:e6878-370_firmware:10.0.3.1(h563sp1c00)
Huawei » E6878-370 Firmware » Version: 10.0.3.1(h563sp1c233)

cpe:2.3:o:huawei:e6878-370_firmware:10.0.3.1(h563sp1c233)

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-1799

Products

Pricing

Contact Us