CVE-2020-1855

medium

Description

Huawei HEGE-570 version 1.0.1.22(SP3); and HEGE-560, OSCA-550, OSCA-550A, OSCA-550AX, and OSCA-550X version 1.0.1.21(SP3) have an insufficient verification vulnerability. An attacker can access the device physically and exploit this vulnerability to tamper with device information. Successful exploit may cause service abnormal.

References

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200122-03-osca-en

Details

Source: Mitre, NVD

Published: 2020-02-18

Updated: 2026-06-17

Risk Information

CVSS v2

Base Score: 3.6

Vector: CVSS2#AV:L/AC:L/Au:N/C:N/I:P/A:P

Severity: Low

CVSS v3

Base Score: 6.1

Vector: CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

Severity: Medium

EPSS

EPSS: 0.00025