HIGH🇬🇧 English

CVE-2019-5304

CVSS 7.5v3.1pub. 2020-01-03upd. 2024-11-21

Some Huawei products have a buffer error vulnerability. An unauthenticated, remote attacker could send specific MPLS Echo Request messages to the target products. Due to insufficient input validation of some parameters in the messages, successful exploit may cause the device to reset.

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
  • Huawei Ar1200

    HW
    Huawei
    wszystkie wersje
  • Huawei Ar1200 Firmware

    OS
    Huawei
    v200r003c01v200r005c20v200r006c10v200r007c00v200r008c20v200r008c50
  • Huawei Ar1200 S

    HW
    Huawei
    wszystkie wersje
  • Huawei Ar1200 S Firmware

    OS
    Huawei
    v200r003c01v200r005c20v200r006c10v200r007c00v200r008c20v200r008c50
  • Huawei Ar120 S

    HW
    Huawei
    wszystkie wersje
  • Huawei Ar120 S Firmware

    OS
    Huawei
    v200r006c10v200r007c00v200r008c20v200r008c50
  • Huawei Ar150

    HW
    Huawei
    wszystkie wersje
  • Huawei Ar150 Firmware

    OS
    Huawei
    v200r003c01v200r005c20v200r006c10v200r007c00v200r008c20v200r008c50
  • Huawei Ar150 S

    HW
    Huawei
    wszystkie wersje
  • Huawei Ar150 S Firmware

    OS
    Huawei
    v200r003c01v200r005c20v200r006c10v200r007c00v200r008c20v200r008c50
  • Huawei Ar160

    HW
    Huawei
    wszystkie wersje
  • Huawei Ar160 Firmware

    OS
    Huawei
    v200r005c20v200r006c10v200r007c00v200r008c20v200r008c50
  • Huawei Ar200

    HW
    Huawei
    wszystkie wersje
  • Huawei Ar200 Firmware

    OS
    Huawei
    v200r003c01v200r005c20v200r006c10v200r007c00v200r008c20v200r008c50
  • Huawei Ar200 S

    HW
    Huawei
    wszystkie wersje
  • Huawei Ar200 S Firmware

    OS
    Huawei
    v200r003c01v200r005c20v200r006c10v200r007c00v200r008c20v200r008c50
  • Huawei Ar2200

    HW
    Huawei
    wszystkie wersje
  • Huawei Ar2200 Firmware

    OS
    Huawei
    v200r003c01v200r005c20v200r006c10v200r007c00v200r008c20v200r008c50
  • Huawei Ar2200 S

    HW
    Huawei
    wszystkie wersje
  • Huawei Ar2200 S Firmware

    OS
    Huawei
    v200r003c01v200r005c20v200r006c10v200r008c20v200r008c50
  • Huawei Ar3200

    HW
    Huawei
    wszystkie wersje
  • Huawei Ar3200 Firmware

    OS
    Huawei
    v200r003c01v200r005c20v200r006c10v200r007c00v200r008c20v200r008c50
  • Huawei Ar3600

    HW
    Huawei
    wszystkie wersje
  • Huawei Ar3600 Firmware

    OS
    Huawei
    v200r006c10v200r007c00v200r008c20v200r008c50
  • Huawei Ips Module

    HW
    Huawei
    wszystkie wersje
  • Huawei Ips Module Firmware

    OS
    Huawei
    v500r001c20v500r001c30
  • Huawei Netengine16ex

    HW
    Huawei
    wszystkie wersje
  • Huawei Netengine16ex Firmware

    OS
    Huawei
    v200r005c20v200r006c10v200r007c00v200r008c20v200r008c50
  • Huawei Ngfw Module

    HW
    Huawei
    wszystkie wersje
  • Huawei Ngfw Module Firmware

    OS
    Huawei
    v500r001c20v500r002c00
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Referencje

Powiązane podatności

CVE-2020-9099CRITICAL9.8ten sam produkt

Huawei products IPS Module; NGFW Module; NIP6300; NIP6600; NIP6800; Secospace USG6300; Secospace USG6500; Seco...

CVE-2020-9068CRITICAL9.8ten sam produkt

Huawei AR3200 products with versions of V200R007C00SPC900, V200R007C00SPCa00, V200R007C00SPCb00, V200R007C00SP...

CVE-2017-17301CRITICAL9.8ten sam produkt

Huawei AR120-S V200R005C32, V200R006C10, V200R007C00, V200R008C20, AR1200 V200R005C20, V200R005C32, V200R006C1...

CVE-2016-6206CRITICAL9.8ten sam produkt

Huawei AR3200 routers with software before V200R007C00SPC600 allow remote attackers to cause a denial of servi...

CVE-2016-4576CRITICAL9.8ten sam produkt

Buffer overflow in the Application Specific Packet Filtering (ASPF) functionality in the Huawei IPS Module, NG...