Huawei : Huawei Data Communication: DoS Vulnerability in Some Huawei Products (huawei-sa-20191204-02-dos)

Anfälligkeitssuche		Suche in 324607 CVE Beschreibungen und 145615 Test Beschreibungen, Zugriff auf 10,000+ Quellverweise.
	Tests CVE Alle

Test Kennung: 1.3.6.1.4.1.25623.1.0.143269

Kategorie: Huawei

Titel: Huawei Data Communication: DoS Vulnerability in Some Huawei Products (huawei-sa-20191204-02-dos)

Zusammenfassung: Some Huawei products have a DoS security vulnerability.

Beschreibung: Summary:
Some Huawei products have a DoS security vulnerability.

Vulnerability Insight:
Some Huawei products have a DoS security vulnerability. Attackers with certain permissions perform specific operations on affected devices. Because the pointer in the program is not processed properly, the vulnerability can be exploited to cause the device to be abnormal. (Vulnerability ID: HWPSIRT-2019-04202)This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2019-5290.Huawei has released software updates to fix this vulnerability. This advisory is available in the linked references.

Vulnerability Impact:
An attacker may exploit the vulnerability to cause the device abnormal.

Affected Software/OS:
IPS Module versions V500R001C30SPC100

NGFW Module versions V500R002C00SPC200

NIP6300 versions V500R001C30SPC200

NIP6600 versions V500R001C30SPC100 V500R001C30SPC200

S5700 versions V200R005C00SPC500 V200R005C02 V200R005C03 V200R006C00SPC100 V200R006C00SPC300 V200R006C00SPC500 V200R007C00SPC100 V200R007C00SPC500 V200R008C00

S6700 versions V200R005C00SPC500 V200R005C01 V200R005C02 V200R008C00

Secospace AntiDDoS8000 versions V500R001C20SPC200 V500R001C20SPC300 V500R001C20SPC500 V500R001C20SPC600

Secospace USG6300 versions V500R001C30SPC100 V500R001C30SPC200

Secospace USG6500 versions V500R001C30SPC100 V500R001C30SPC200

Secospace USG6600 versions V500R001C30SPC200

Solution:
See the referenced vendor advisory for a solution.

CVSS Score:
4.0

CVSS Vector:
AV:N/AC:L/Au:S/C:N/I:N/A:P

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2019-5290
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191204-02-dos-en

Copyright Copyright (C) 2019 Greenbone Networks GmbH

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.
Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.

Test Kennung:	1.3.6.1.4.1.25623.1.0.143269
Kategorie:	Huawei
Titel:	Huawei Data Communication: DoS Vulnerability in Some Huawei Products (huawei-sa-20191204-02-dos)
Zusammenfassung:	Some Huawei products have a DoS security vulnerability.
Beschreibung:	Summary: Some Huawei products have a DoS security vulnerability. Vulnerability Insight: Some Huawei products have a DoS security vulnerability. Attackers with certain permissions perform specific operations on affected devices. Because the pointer in the program is not processed properly, the vulnerability can be exploited to cause the device to be abnormal. (Vulnerability ID: HWPSIRT-2019-04202)This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2019-5290.Huawei has released software updates to fix this vulnerability. This advisory is available in the linked references. Vulnerability Impact: An attacker may exploit the vulnerability to cause the device abnormal. Affected Software/OS: IPS Module versions V500R001C30SPC100 NGFW Module versions V500R002C00SPC200 NIP6300 versions V500R001C30SPC200 NIP6600 versions V500R001C30SPC100 V500R001C30SPC200 S5700 versions V200R005C00SPC500 V200R005C02 V200R005C03 V200R006C00SPC100 V200R006C00SPC300 V200R006C00SPC500 V200R007C00SPC100 V200R007C00SPC500 V200R008C00 S6700 versions V200R005C00SPC500 V200R005C01 V200R005C02 V200R008C00 Secospace AntiDDoS8000 versions V500R001C20SPC200 V500R001C20SPC300 V500R001C20SPC500 V500R001C20SPC600 Secospace USG6300 versions V500R001C30SPC100 V500R001C30SPC200 Secospace USG6500 versions V500R001C30SPC100 V500R001C30SPC200 Secospace USG6600 versions V500R001C30SPC200 Solution: See the referenced vendor advisory for a solution. CVSS Score: 4.0 CVSS Vector: AV:N/AC:L/Au:S/C:N/I:N/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2019-5290 http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191204-02-dos-en
Copyright	Copyright (C) 2019 Greenbone Networks GmbH