Strix
26.1K

CVE-2019-5254

HIGHCVSS 8.6/10EPSS 0.74%

Last modified

CVE-2019-5254 is a high-severity vulnerability rated 8.6/10 on the CVSS scale. Certain Huawei products (AP2000;IPS Module;NGFW Module;NIP6300;NIP6600;NIP6800;S5700;SVN5600;SVN5800;SVN5800-C;SeMG9811;Secospace AntiDDoS8000;Secospace USG6300;Secospace USG6500;Secospace USG6600;USG6000V;eSpace U1981) have an out-of-bounds read vulnerability. An attacker who logs in to the board may send crafted messages from the internal network port or tamper with inter-process message packets to exploit this vulnerability. EPSS estimates a 0.74% chance of exploitation in the next 30 days.

Description

Certain Huawei products (AP2000;IPS Module;NGFW Module;NIP6300;NIP6600;NIP6800;S5700;SVN5600;SVN5800;SVN5800-C;SeMG9811;Secospace AntiDDoS8000;Secospace USG6300;Secospace USG6500;Secospace USG6600;USG6000V;eSpace U1981) have an out-of-bounds read vulnerability. An attacker who logs in to the board may send crafted messages from the internal network port or tamper with inter-process message packets to exploit this vulnerability. Due to insufficient validation of the message, successful exploit may cause the affected board to be abnormal.

Metrics

CVSS 3.1
8.6/10

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

EPSS Probability
0.74%

50.1th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersions
HuaweiAp2000 Firmwarev200r005c30
HuaweiAp2000 Firmwarev200r006c10
HuaweiAp2000 Firmwarev200r006c20
HuaweiAp2000 Firmwarev200r007c10
HuaweiAp2000 Firmwarev200r007c20
HuaweiAp2000 Firmwarev200r008c00
HuaweiAp2000 Firmwarev200r008c10
HuaweiAp2000 Firmwarev200r009c00
HuaweiIps Firmwarev500r001c00spc300
HuaweiIps Firmwarev500r001c00spc500
HuaweiIps Firmwarev500r001c00sph303
HuaweiIps Firmwarev500r001c00sph508
HuaweiIps Firmwarev500r001c20
HuaweiIps Firmwarev500r001c20spc100
HuaweiIps Firmwarev500r001c20spc100pwe
HuaweiIps Firmwarev500r001c20spc200
HuaweiIps Firmwarev500r001c20spc200b062
HuaweiIps Firmwarev500r001c20spc200pwe
HuaweiIps Firmwarev500r001c20spc300b078
HuaweiIps Firmwarev500r001c20spc300pwe
HuaweiIps Firmwarev500r001c30
HuaweiIps Firmwarev500r001c30spc100
HuaweiIps Firmwarev500r001c30spc100pwe
HuaweiIps Firmwarev500r001c30spc200
HuaweiIps Firmwarev500r001c30spc200pwe
HuaweiIps Firmwarev500r001c30spc300
HuaweiIps Firmwarev500r001c50
HuaweiIps Firmwarev500r001c50pwe
HuaweiIps Firmwarev500r001c80
HuaweiIps Firmwarev500r005c00
HuaweiNgfw Firmwarev500r001c00spc300
HuaweiNgfw Firmwarev500r001c00spc500
HuaweiNgfw Firmwarev500r001c00spc500pwe
HuaweiNgfw Firmwarev500r001c00sph303
HuaweiNgfw Firmwarev500r001c00sph508
HuaweiNgfw Firmwarev500r001c20
HuaweiNgfw Firmwarev500r001c20spc100
HuaweiNgfw Firmwarev500r001c20spc100pwe
HuaweiNgfw Firmwarev500r001c20spc200
HuaweiNgfw Firmwarev500r001c20spc200b062
HuaweiNgfw Firmwarev500r001c20spc200pwe
HuaweiNgfw Firmwarev500r001c20spc300b078
HuaweiNgfw Firmwarev500r001c20spc300pwe
HuaweiNgfw Firmwarev500r002c00
HuaweiNgfw Firmwarev500r002c00spc100
HuaweiNgfw Firmwarev500r002c00spc100pwe
HuaweiNgfw Firmwarev500r002c00spc200
HuaweiNgfw Firmwarev500r002c00spc200pwe
HuaweiNgfw Firmwarev500r002c00spc300
HuaweiNgfw Firmwarev500r002c10

Showing 50 of 244 affected configurations. See NVD for the full list.

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2019-5254?
Certain Huawei products (AP2000;IPS Module;NGFW Module;NIP6300;NIP6600;NIP6800;S5700;SVN5600;SVN5800;SVN5800-C;SeMG9811;Secospace AntiDDoS8000;Secospace USG6300;Secospace USG6500;Secospace USG6600;USG6000V;eSpace U1981) have an out-of-bounds read vulnerability. An attacker who logs in to the board may send crafted messages from the internal network port or tamper with inter-process message packets to exploit this vulnerability. Due to insufficient validation of the message, successful exploit may cause the affected board to be abnormal.
How severe is CVE-2019-5254?
CVE-2019-5254 has a CVSS score of 8.6/10 (HIGH severity). The EPSS model estimates a 0.74% probability of exploitation in the next 30 days.
How do I fix CVE-2019-5254?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2019-5254?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST