CVE-2019-5304

Published: Jan 3, 2020

Modified: Aug 4, 2024

PUBLISHED

Description

Some Huawei products have a buffer error vulnerability. An unauthenticated, remote attacker could send specific MPLS Echo Request messages to the target products. Due to insufficient input validation of some parameters in the messages, successful exploit may cause the device to reset.

Vendor	Product	Versions
n/a	AR120-S;AR1200;AR1200-S;AR150;AR150-S;AR160;AR200;AR200-S;AR2200;AR2200-S;AR3200;AR3600;IPS Module;NGFW Module;NIP6300;NIP6600;NetEngine16EX;S5700;S6700;SRG1300;SRG2300;SRG3300;Secospace AntiDDoS8000;Secospace USG6300;Secospace USG6500;Secospace USG6600	affected `V200R006C10` affected `V200R007C00` affected `V200R008C20` affected `V200R008C50` affected `V200R003C01` +14 more versions

References

https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200102-01-buffer-en

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2019-5304

Description

Affected Products

References