Cyber Resilience

CVE-2020-9213

High

Published: 22 March 2021

Published
22 March 2021
Modified
21 November 2024
KEV Added
Patch
CVSS Score v3.1 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS Score 0.0018 39.7th percentile
Risk Priority 15 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2020-9213 is a high-severity an unspecified weakness vulnerability in Huawei Nip6300 Firmware. Its CVSS base score is 7.5 (High).

Operationally, ranked at the 39.7th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.

EU & UK References

Vulnerability details

There is a denial of service vulnerability in some huawei products. In specific scenarios, due to the improper handling of the packets, an attacker may craft many specific packets. Successful exploit may cause some services to be abnormal. Affected products…

more

include some versions of NGFW Module, NIP6300, NIP6600, NIP6800, Secospace USG6300, Secospace USG6500, Secospace USG6600 and SG9500.

CWE(s)

Related Threats

No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.

Affected Assets

huawei
ngfw module firmware
v500r005c00
huawei
nip6300 firmware
v500r001c30, v500r001c60, v500r005c00
huawei
nip6600 firmware
v500r001c30, v500r001c60, v500r005c00
huawei
nip6800 firmware
v500r001c60, v500r005c00
huawei
secospace usg6300 firmware
v500r001c30, v500r001c60, v500r005c00
huawei
secospace usg6500 firmware
v500r001c30, v500r001c60, v500r005c00
huawei
secospace usg6600 firmware
v500r001c30, v500r001c60, v500r005c00
huawei
usg9500 firmware
v500r001c30, v500r001c60, v500r005c00

Mitigating Controls

No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.

References