Vulnerability Description
Some Huawei products have a memory leak vulnerability when handling some messages. A remote attacker with operation privilege could exploit the vulnerability by sending specific messages continuously. Successful exploit may cause some service to be abnormal.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Huawei | Ar120-S Firmware | v200r005c20 |
| Huawei | Ar120-S | - |
| Huawei | Ar1200 Firmware | v200r005c20 |
| Huawei | Ar1200 | - |
| Huawei | Ar1200-S Firmware | v200r005c20 |
| Huawei | Ar1200-S | - |
| Huawei | Ar150 Firmware | v200r005c20 |
| Huawei | Ar150 | - |
| Huawei | Ar150-S Firmware | v200r005c20 |
| Huawei | Ar150-S | - |
| Huawei | Ar160 Firmware | v200r005c20 |
| Huawei | Ar160 | - |
| Huawei | Ar200 Firmware | v200r005c20 |
| Huawei | Ar200 | - |
| Huawei | Ar200-S Firmware | v200r005c20 |
| Huawei | Ar200-S | - |
| Huawei | Ar2200 Firmware | v200r005c20 |
| Huawei | Ar2200 | - |
| Huawei | Ar2200-S Firmware | v200r005c20 |
| Huawei | Ar2200-S | - |
Related Weaknesses (CWE)
References
- http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191023-01-memory-Vendor Advisory
- http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191023-01-memory-Vendor Advisory
FAQ
What is CVE-2019-5293?
CVE-2019-5293 is a vulnerability with a CVSS score of 6.5 (MEDIUM). Some Huawei products have a memory leak vulnerability when handling some messages. A remote attacker with operation privilege could exploit the vulnerability by sending specific messages continuously....
How severe is CVE-2019-5293?
CVE-2019-5293 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2019-5293?
Check the references section above for vendor advisories and patch information. Affected products include: Huawei Ar120-S Firmware, Huawei Ar120-S, Huawei Ar1200 Firmware, Huawei Ar1200, Huawei Ar1200-S Firmware.