CVE-2020-1881

Name of the Vulnerable Software and Affected Versions NIP6800 versions V500R001C30 through V500R005C00SPC100 Secospace USG6600 versions V500R001C30 through V500R005C00SPC100 USG9500 products with versions of V500R001C30; V500R001C60SPC500; V500R005C00SPC100

Description The issue is related to a resource management error, which can be exploited to cause service abnormalities on affected devices. An attacker needs to perform specific operations to trigger a function of the affected device, and due to improper resource management of the function, the vulnerability can be exploited. This can lead to a denial of service.

Recommendations For NIP6800 versions V500R001C30 through V500R005C00SPC100, update to a version that includes the fix for the resource management error vulnerability. For Secospace USG6600 versions V500R001C30 through V500R005C00SPC100, update to a version that includes the fix for the resource management error vulnerability. For USG9500 products with versions of V500R001C30; V500R001C60SPC500; V500R005C00SPC100, update to a version that includes the fix for the resource management error vulnerability. As a temporary workaround, consider restricting access to the affected function until a patch is available.