CVE-2019-5290

Published Dec 13, 2019

Last updated 3 years ago

CVSS medium 6.5

Overview

Description: Huawei S5700 and S6700 have a DoS security vulnerability. Attackers with certain permissions perform specific operations on affected devices. Because the pointer in the program is not processed properly, the vulnerability can be exploited to cause the device to be abnormal.
Source: psirt@huawei.com
NVD status: Analyzed

Risk scores

CVSS 3.1

Type: Primary
Base score: 6.5
Impact score: 3.6
Exploitability score: 2.8
Vector string: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Severity: MEDIUM

CVSS 2.0

Type: Primary
Base score: 4
Impact score: 2.9
Exploitability score: 8
Vector string: AV:N/AC:L/Au:S/C:N/I:N/A:P

Weaknesses

nvd@nist.gov: NVD-CWE-noinfo

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:huawei:s5700_firmware:v200r005c00spc500:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4B3B076D-F61E-4BE0-B808-D86EB6A83D92"
          },
          {
            "criteria": "cpe:2.3:o:huawei:s5700_firmware:v200r005c02:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CB33B908-085C-43C6-B8B7-25BBF3614C9E"
          },
          {
            "criteria": "cpe:2.3:o:huawei:s5700_firmware:v200r005c03:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5B18ABC1-A970-472A-A8BF-934D1180930E"
          },
          {
            "criteria": "cpe:2.3:o:huawei:s5700_firmware:v200r006c00spc100:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F56ADA0A-B3B1-4B6C-9800-EB28B61E3F03"
          },
          {
            "criteria": "cpe:2.3:o:huawei:s5700_firmware:v200r006c00spc300:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "53A7B27E-CA45-44B7-9BE1-5B11D69BDDF4"
          },
          {
            "criteria": "cpe:2.3:o:huawei:s5700_firmware:v200r006c00spc500:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C8A24F24-F960-4F0F-A553-3C7EAE5C13E5"
          },
          {
            "criteria": "cpe:2.3:o:huawei:s5700_firmware:v200r007c00spc100:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8FF2F7D0-8A62-4B9B-9551-749178FEA120"
          },
          {
            "criteria": "cpe:2.3:o:huawei:s5700_firmware:v200r007c00spc500:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CCDCF4CA-48CF-4AEC-B3EC-7CD9EF9E3DA4"
          },
          {
            "criteria": "cpe:2.3:o:huawei:s5700_firmware:v200r008c00:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "21FFF548-FBEF-468A-A8DE-1DB1B7C0B3AF"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:huawei:s5700:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "E22D3CFF-3353-4EE2-8933-84F395469D0D"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:huawei:s6700_firmware:v200r005c00spc500:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "96FF5103-C97A-443A-8475-0E99A0175455"
          },
          {
            "criteria": "cpe:2.3:o:huawei:s6700_firmware:v200r005c01:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F4979AA8-0D8E-4F37-A7DC-709BE4821D51"
          },
          {
            "criteria": "cpe:2.3:o:huawei:s6700_firmware:v200r005c02:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "898AC16A-8F4E-4709-A3B4-DE74FFB91130"
          },
          {
            "criteria": "cpe:2.3:o:huawei:s6700_firmware:v200r008c00:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8DA5CF67-A58B-4666-B87E-712507233453"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:huawei:s6700:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "DA7AC10D-B0DD-4206-8642-134DDD585C06"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Risk scores

CVSS 3.1

CVSS 2.0

Weaknesses

Social media

Configurations

References