Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog About Contact
7.5
CVSSv3

CVE-2019-5294

Published: 13/11/2019 Updated: 18/11/2019
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9
VMScore: 445
Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

Vulnerability Summary

There is an out of bound read vulnerability in some Huawei products. A remote, unauthenticated attacker may send a corrupt or crafted message to the affected products. Due to a buffer read overflow error when parsing the message, successful exploit may cause some service to be abnormal.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

huawei ar120-s firmware v200r005c20

huawei ar120-s firmware v200r006c10

huawei ar120-s firmware v200r007c00

huawei ar1200 firmware v200r005c20

huawei ar1200 firmware v200r006c10

huawei ar1200 firmware v200r007c00

huawei ar1200-s firmware v200r005c20

huawei ar1200-s firmware v200r006c10

huawei ar1200-s firmware v200r007c00

huawei ar150 firmware v200r005c20

huawei ar150 firmware v200r006c10

huawei ar150 firmware v200r007c00

huawei ar150-s firmware v200r005c20

huawei ar150-s firmware v200r006c10

huawei ar150-s firmware v200r007c00

huawei ar160 firmware v200r005c20

huawei ar160 firmware v200r006c10

huawei ar160 firmware v200r007c00

huawei ar200 firmware v200r005c20

huawei ar200 firmware v200r006c10

huawei ar200 firmware v200r007c00

huawei ar200-s firmware v200r005c20

huawei ar200-s firmware v200r006c10

huawei ar200-s firmware v200r007c00

huawei ar2200 firmware v200r005c20

huawei ar2200 firmware v200r006c10

huawei ar2200 firmware v200r007c00

huawei ar2200-s firmware v200r005c20

huawei ar2200-s firmware v200r006c10

huawei ar2200-s firmware v200r007c00

huawei ar3200 firmware v200r005c20

huawei ar3200 firmware v200r006c10

huawei ar3600 firmware v200r006c10

huawei ar3600 firmware v200r007c00

huawei netengine16ex firmware v200r005c20

huawei netengine16ex firmware v200r006c10

huawei netengine16ex firmware v200r007c00

huawei srg1300 firmware v200r005c20

huawei srg1300 firmware v200r006c10

huawei srg1300 firmware v200r007c00

huawei srg2300 firmware v200r005c20

huawei srg2300 firmware v200r006c10

huawei srg2300 firmware v200r007c00

huawei srg3300 firmware v200r005c20

huawei srg3300 firmware v200r006c10

huawei srg3300 firmware v200r007c00

Vendor Advisories

Huawei Security Advisories: Security Advisory - Out-Of-Bound Read Vulnerability in Some Huawei Products
There is an out of bound read vulnerability in some Huawei products A remote, unauthenticated attacker may send a corrupt or crafted message to the affected products Due to a buffer read overflow error when parsing the message, successful exploit may cause some service abnormal (Vulnerability ID: HWPSIRT-2019-04073) This vulnerability has been a ...

References

CWE-125http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191023-01-buffer-enhttps://nvd.nist.govhttps://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191023-01-buffer-en
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
log injectionCVE-2024-37079type confusionCVE-2024-32943CVE-2024-30103CVE-2024-37350arbitrary codeCVE-2024-6189CVE-2024-6225
Vulmon Logo Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook