CVE-2020-1862
LOWHuawei CampusInsight V100R019C00 and ManageOne 6.5.RC2.B050 - Double Free
Title source: llmDescription
There is a double free vulnerability in some Huawei products. A local attacker with low privilege may perform some operations to exploit the vulnerability. Due to doubly freeing memory, successful exploit may cause some service abnormal. Affected product versions include:CampusInsight versions V100R019C00;ManageOne versions 6.5.RC2.B050.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_misc
https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200318-01-free-en
Scores
CVSS v3
3.3
EPSS
0.0006
EPSS Percentile
18.1%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
Details
CWE
CWE-415
Status
published
Products (2)
huawei/campusinsight
v100r019c00
huawei/manageone
6.5 rc2.b050
Published
Mar 20, 2020
Tracked Since
Feb 18, 2026