CVE-2019-5290 — MEDIUM (6.5)

Vulnerability Description

Huawei S5700 and S6700 have a DoS security vulnerability. Attackers with certain permissions perform specific operations on affected devices. Because the pointer in the program is not processed properly, the vulnerability can be exploited to cause the device to be abnormal.

CVSS Score

6.5

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

NONE

Integrity

NONE

Availability

HIGH

Affected Products

Vendor	Product	Versions
Huawei	S5700 Firmware	v200r005c00spc500
Huawei	S5700	-
Huawei	S6700 Firmware	v200r005c00spc500
Huawei	S6700	-

References

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191204-02-dos-enVendor Advisory
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191204-02-dos-enVendor Advisory

FAQ

What is CVE-2019-5290?

CVE-2019-5290 is a vulnerability with a CVSS score of 6.5 (MEDIUM). Huawei S5700 and S6700 have a DoS security vulnerability. Attackers with certain permissions perform specific operations on affected devices. Because the pointer in the program is not processed proper...

How severe is CVE-2019-5290?

CVE-2019-5290 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2019-5290?

Check the references section above for vendor advisories and patch information. Affected products include: Huawei S5700 Firmware, Huawei S5700, Huawei S6700 Firmware, Huawei S6700.