Vulnerability Description
There is a weak algorithm vulnerability in some Huawei products. The affected products use weak algorithms by default. Attackers may exploit the vulnerability to cause information leaks.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Huawei | S12700 Firmware | v200r007c00 |
| Huawei | S12700 | - |
| Huawei | S1700 Firmware | v200r006c10 |
| Huawei | S1700 | - |
| Huawei | S2700 Firmware | v200r006c00 |
| Huawei | S2700 | - |
| Huawei | S5700 Firmware | v200r005c00 |
| Huawei | S5700 | - |
| Huawei | S6700 Firmware | v200r005c00 |
| Huawei | S6700 | - |
| Huawei | S7700 Firmware | v200r006c00 |
| Huawei | S7700 | - |
| Huawei | S9700 Firmware | v200r006c00 |
| Huawei | S9700 | - |
References
- http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191204-01-vrp-enVendor Advisory
- http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191204-01-vrp-enVendor Advisory
FAQ
What is CVE-2019-19397?
CVE-2019-19397 is a vulnerability with a CVSS score of 7.5 (HIGH). There is a weak algorithm vulnerability in some Huawei products. The affected products use weak algorithms by default. Attackers may exploit the vulnerability to cause information leaks.
How severe is CVE-2019-19397?
CVE-2019-19397 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2019-19397?
Check the references section above for vendor advisories and patch information. Affected products include: Huawei S12700 Firmware, Huawei S12700, Huawei S1700 Firmware, Huawei S1700, Huawei S2700 Firmware.