Published: 13/11/2019 Updated: 15/11/2019

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

Gauss100 OLTP database in ManageOne with versions of 6.5.0 have an out-of-bounds read vulnerability due to the insufficient checks of the specific packet length. Attackers can construct invalid packets to attack the active and standby communication channels. Successful exploit of this vulnerability could allow the malicious user to crash the database on the standby node.

Vulnerable Product	Search on Vulmon	Subscribe to Product
huawei manageone 6.5.0

There is an out-of-bounds read vulnerability in the Gauss100 OLTP database of some Huawei products due to the insufficient checks of the specific packet length Attackers can construct invalid packets to attack the active and standby communication channels Successful exploit of this vulnerability could allow the attacker to crash the database on t ...

CWE-125 http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190925-01-database-en https://nvd.nist.gov https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190925-01-database-en

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2019-5289

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect