Vulnerability-Lookup

BDU:2019-02471

Vulnerability from fstec - Published: 04.06.2019

Title

Уязвимость микропрограммного обеспечения маршрутизаторов Huawei серии S, существующая из-за недостаточной проверки входных данных, позволяющая нарушителю вызвать отказ в обслуживании

Description

Уязвимость микропрограммного обеспечения маршрутизаторов Huawei серии S существует из-за недостаточной проверки входных данных. Эксплуатация уязвимости может позволить нарушителю, действующему удалённо, вызвать перезагрузку и отказ в обслуживании уязвимого устройства в результате отправки специально сформированных пакетов

Severity ?


                    
                      AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Vendor

Huawei Technologies Co., Ltd.

Software Name

Huawei S12700, Huawei S1700, Huawei S2300, Huawei S2700, Huawei S5300, Huawei S5700, Huawei S600-e, Huawei S6300, Huawei S6700, Huawei S7700, Huawei S7900, Huawei S9300, Huawei S9300x, Huawei S9700

Software Version

V200r005c00 (Huawei S12700), V200r006c00 (Huawei S12700), V200r007c00 (Huawei S12700), V200r008c00 (Huawei S12700), V200r010c00 (Huawei S12700), V200r011c10 (Huawei S12700), V200r012c00 (Huawei S12700), V200r013c00 (Huawei S12700), V200r008c00 (Huawei S1700), V200r009c00 (Huawei S1700), V200r010c00 (Huawei S1700), V200r011c10 (Huawei S1700), V200r012c00 (Huawei S1700), V200r013c00 (Huawei S1700), V200r003c00 (Huawei S2300), V200r005c00 (Huawei S2300), V200r008c00 (Huawei S2300), V200r010c00 (Huawei S2300), V200r011c10 (Huawei S2300), V200r012c00 (Huawei S2300), V200r013c00 (Huawei S2300), V200r005c00 (Huawei S2700), V200r006c00 (Huawei S2700), V200r007c00 (Huawei S2700), V200r008c00 (Huawei S2700), V200r010c00 (Huawei S2700), V200r011c10 (Huawei S2700), V200r012c00 (Huawei S2700), V200r013c00 (Huawei S2700), V200r003c00 (Huawei S5300), V200r005c00 (Huawei S5300), V200r008c00 (Huawei S5300), V200r010c00 (Huawei S5300), V200r011c10 (Huawei S5300), V200r012c00 (Huawei S5300), V200r013c00 (Huawei S5300), V200r003c00 (Huawei S5700), V200r005c00 (Huawei S5700), V200r006c00 (Huawei S5700), V200r007c00 (Huawei S5700), V200r008c00 (Huawei S5700), V200r010c00 (Huawei S5700), V200r011c10 (Huawei S5700), V200r012c00 (Huawei S5700), V200r013c00 (Huawei S5700), V200r008c00 (Huawei S600-e), V200r010c00 (Huawei S600-e), V200r011c10 (Huawei S600-e), V200r012c00 (Huawei S600-e), V200r013c00 (Huawei S600-e), V200r003c00 (Huawei S6300), V200r005c00 (Huawei S6300), V200r007c00 (Huawei S6300), V200r008c00 (Huawei S6300), V200r010c00 (Huawei S6300), V200r011c10 (Huawei S6300), V200r012c00 (Huawei S6300), V200r013c00 (Huawei S6300), V200r003c00 (Huawei S6700), V200r005c00 (Huawei S6700), V200r007c00 (Huawei S6700), V200r008c00 (Huawei S6700), V200r010c00 (Huawei S6700), V200r011c10 (Huawei S6700), V200r012c00 (Huawei S6700), V200r013c00 (Huawei S6700), V200r003c00 (Huawei S7700), V200r005c00 (Huawei S7700), V200r006c00 (Huawei S7700), V200r007c00 (Huawei S7700), V200r008c00 (Huawei S7700), V200r010c00 (Huawei S7700), V200r011c10 (Huawei S7700), V200r012c00 (Huawei S7700), V200r013c00 (Huawei S7700), V200r011c10 (Huawei S7900), V200r012c00 (Huawei S7900), V200r013c00 (Huawei S7900), V200r003c00 (Huawei S9300), V200r008c00 (Huawei S9300), V200r008c10 (Huawei S9300), V200r010c00 (Huawei S9300), V200r011c10 (Huawei S9300), V200r012c00 (Huawei S9300), V200r013c00 (Huawei S9300), V200r010c00 (Huawei S9300x), V200r011c10 (Huawei S9300x), V200r012c00 (Huawei S9300x), V200r013c00 (Huawei S9300x), V200r003c00 (Huawei S9700), V200r005c00 (Huawei S9700), V200r006c00 (Huawei S9700), V200r007c00 (Huawei S9700), V200r008c00 (Huawei S9700), V200r010c00 (Huawei S9700), V200r011c10 (Huawei S9700), V200r012c00 (Huawei S9700), V200r013c00 (Huawei S9700)

Possible Mitigations

Использование рекомендаций производителя: https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190522-01-switch-en

Reference

https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190522-01-switch-en https://nvd.nist.gov/vuln/detail/CVE-2019-5285

CWE

CWE-20

JSON

To clipboard

{
  "CVSS 2.0": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
  "CVSS 3.0": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
  "CVSS 4.0": null,
  "remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": null,
  "remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": null,
  "\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "Huawei Technologies Co., Ltd.",
  "\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "V200r005c00 (Huawei S12700), V200r006c00 (Huawei S12700), V200r007c00 (Huawei S12700), V200r008c00 (Huawei S12700), V200r010c00 (Huawei S12700), V200r011c10 (Huawei S12700), V200r012c00 (Huawei S12700), V200r013c00 (Huawei S12700), V200r008c00 (Huawei S1700), V200r009c00 (Huawei S1700), V200r010c00 (Huawei S1700), V200r011c10 (Huawei S1700), V200r012c00 (Huawei S1700), V200r013c00 (Huawei S1700), V200r003c00 (Huawei S2300), V200r005c00 (Huawei S2300), V200r008c00 (Huawei S2300), V200r010c00 (Huawei S2300), V200r011c10 (Huawei S2300), V200r012c00 (Huawei S2300), V200r013c00 (Huawei S2300), V200r005c00 (Huawei S2700), V200r006c00 (Huawei S2700), V200r007c00 (Huawei S2700), V200r008c00 (Huawei S2700), V200r010c00 (Huawei S2700), V200r011c10 (Huawei S2700), V200r012c00 (Huawei S2700), V200r013c00 (Huawei S2700), V200r003c00 (Huawei S5300), V200r005c00 (Huawei S5300), V200r008c00 (Huawei S5300), V200r010c00 (Huawei S5300), V200r011c10 (Huawei S5300), V200r012c00 (Huawei S5300), V200r013c00 (Huawei S5300), V200r003c00 (Huawei S5700), V200r005c00 (Huawei S5700), V200r006c00 (Huawei S5700), V200r007c00 (Huawei S5700), V200r008c00 (Huawei S5700), V200r010c00 (Huawei S5700), V200r011c10 (Huawei S5700), V200r012c00 (Huawei S5700), V200r013c00 (Huawei S5700), V200r008c00 (Huawei S600-e), V200r010c00 (Huawei S600-e), V200r011c10 (Huawei S600-e), V200r012c00 (Huawei S600-e), V200r013c00 (Huawei S600-e), V200r003c00 (Huawei S6300), V200r005c00 (Huawei S6300), V200r007c00 (Huawei S6300), V200r008c00 (Huawei S6300), V200r010c00 (Huawei S6300), V200r011c10 (Huawei S6300), V200r012c00 (Huawei S6300), V200r013c00 (Huawei S6300), V200r003c00 (Huawei S6700), V200r005c00 (Huawei S6700), V200r007c00 (Huawei S6700), V200r008c00 (Huawei S6700), V200r010c00 (Huawei S6700), V200r011c10 (Huawei S6700), V200r012c00 (Huawei S6700), V200r013c00 (Huawei S6700), V200r003c00 (Huawei S7700), V200r005c00 (Huawei S7700), V200r006c00 (Huawei S7700), V200r007c00 (Huawei S7700), V200r008c00 (Huawei S7700), V200r010c00 (Huawei S7700), V200r011c10 (Huawei S7700), V200r012c00 (Huawei S7700), V200r013c00 (Huawei S7700), V200r011c10 (Huawei S7900), V200r012c00 (Huawei S7900), V200r013c00 (Huawei S7900), V200r003c00 (Huawei S9300), V200r008c00 (Huawei S9300), V200r008c10 (Huawei S9300), V200r010c00 (Huawei S9300), V200r011c10 (Huawei S9300), V200r012c00 (Huawei S9300), V200r013c00 (Huawei S9300), V200r010c00 (Huawei S9300x), V200r011c10 (Huawei S9300x), V200r012c00 (Huawei S9300x), V200r013c00 (Huawei S9300x), V200r003c00 (Huawei S9700), V200r005c00 (Huawei S9700), V200r006c00 (Huawei S9700), V200r007c00 (Huawei S9700), V200r008c00 (Huawei S9700), V200r010c00 (Huawei S9700), V200r011c10 (Huawei S9700), V200r012c00 (Huawei S9700), V200r013c00 (Huawei S9700)",
  "\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044f:\nhttps://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190522-01-switch-en",
  "\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "04.06.2019",
  "\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "23.03.2021",
  "\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "11.07.2019",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2019-02471",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2019-5285",
  "\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430",
  "\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u0434\u0430",
  "\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "Huawei S12700, Huawei S1700, Huawei S2300, Huawei S2700, Huawei S5300, Huawei S5700, Huawei S600-e, Huawei S6300, Huawei S6700, Huawei S7700, Huawei S7900, Huawei S9300, Huawei S9300x, Huawei S9700",
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": null,
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043c\u0438\u043a\u0440\u043e\u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f \u043c\u0430\u0440\u0448\u0440\u0443\u0442\u0438\u0437\u0430\u0442\u043e\u0440\u043e\u0432 Huawei \u0441\u0435\u0440\u0438\u0438 S, \u0441\u0443\u0449\u0435\u0441\u0442\u0432\u0443\u044e\u0449\u0430\u044f \u0438\u0437-\u0437\u0430 \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u043e\u0439 \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0438 \u0432\u0445\u043e\u0434\u043d\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u0432\u044b\u0437\u0432\u0430\u0442\u044c \u043e\u0442\u043a\u0430\u0437 \u0432 \u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u043d\u0438\u0438",
  "\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u041d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u0430\u044f \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0430 \u0432\u0432\u043e\u0434\u0438\u043c\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445 (CWE-20)",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043c\u0438\u043a\u0440\u043e\u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f \u043c\u0430\u0440\u0448\u0440\u0443\u0442\u0438\u0437\u0430\u0442\u043e\u0440\u043e\u0432 Huawei \u0441\u0435\u0440\u0438\u0438 S \u0441\u0443\u0449\u0435\u0441\u0442\u0432\u0443\u0435\u0442 \u0438\u0437-\u0437\u0430 \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u043e\u0439 \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0438 \u0432\u0445\u043e\u0434\u043d\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e, \u0434\u0435\u0439\u0441\u0442\u0432\u0443\u044e\u0449\u0435\u043c\u0443 \u0443\u0434\u0430\u043b\u0451\u043d\u043d\u043e, \u0432\u044b\u0437\u0432\u0430\u0442\u044c \u043f\u0435\u0440\u0435\u0437\u0430\u0433\u0440\u0443\u0437\u043a\u0443 \u0438 \u043e\u0442\u043a\u0430\u0437 \u0432 \u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u043d\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0433\u043e \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0430 \u0432 \u0440\u0435\u0437\u0443\u043b\u044c\u0442\u0430\u0442\u0435 \u043e\u0442\u043f\u0440\u0430\u0432\u043a\u0438 \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u0441\u0444\u043e\u0440\u043c\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0445 \u043f\u0430\u043a\u0435\u0442\u043e\u0432",
  "\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
  "\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": "-",
  "\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430",
  "\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u041c\u0430\u043d\u0438\u043f\u0443\u043b\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u0441\u0443\u0440\u0441\u0430\u043c\u0438",
  "\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190522-01-switch-en\nhttps://nvd.nist.gov/vuln/detail/CVE-2019-5285",
  "\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
  "\u0422\u0438\u043f \u041f\u041e": "\u041f\u041e \u0441\u0435\u0442\u0435\u0432\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e-\u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0433\u043e \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u0430",
  "\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-20",
  "\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0412\u044b\u0441\u043e\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 2.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 7,8)\n\u0412\u044b\u0441\u043e\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 3.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 7,5)"
}

CVE-2019-5285 (GCVE-0-2019-5285)

Vulnerability from cvelistv5 – Published: 2019-06-04 18:47 – Updated: 2024-08-04 19:54

Summary

Some Huawei S series switches have a DoS vulnerability. An unauthenticated remote attacker can send crafted packets to the affected device to exploit this vulnerability. Due to insufficient verification of the packets, successful exploitation may cause the device reboot and denial of service (DoS) condition. (Vulnerability ID: HWPSIRT-2019-03109)

Severity ?

No CVSS data available.

CWE

Assigner

huawei

References

URL

Tags

	https://www.huawei.com/en/psirt/security-advisori…	x_refsource_CONFIRM
	http://www.huawei.com/en/psirt/security-advisorie…	x_refsource_CONFIRM

Impacted products

	Vendor	Product	Version
	Huawei	S12700, S12700, S12700, S12700, S12700, S12700, S12700, S12700, S1700, S1700, S1700, S1700, S1700, S1700, S2300, S2300, S2300, S2300, S2300, S2300, S2300, S2700, S2700, S2700, S2700, S2700, S2700, S2700, S2700, S5300, S5300, S5300, S5300, S5300, S5300, S5300, S5700, S5700, S5700, S5700, S5700, S5700, S5700, S5700, S5700, S600-E, S600-E, S600-E, S600-E, S600-E, S6300, S6300, S6300, S6300, S6300, S6300, S6300, S6300, S6700, S6700, S6700, S6700, S6700, S6700, S6700, S6700, S7700, S7700, S7700, S7700, S7700, S7700, S7700, S7700, S7700, S7900, S7900, S7900, S9300, S9300, S9300, S9300, S9300, S9300, S9300, S9300X, S9300X, S9300X, S9300X, S9700, S9700, S9700, S9700, S9700, S9700, S9700, S9700, S9700	Affected: S12700 V200R008C00 Affected: S12700 V200R010C00 Affected: S12700 V200R012C00 Affected: S12700 V200R013C00 Affected: S12700 V200R011C10 Affected: S1700 V200R008C00 Affected: S1700 V200R009C00 Affected: S1700 V200R010C00 Affected: S1700 V200R011C10 Affected: S2300 V200R003C00 Affected: S2300 V200R005C00 Affected: S2300 V200R008C00 Affected: S2300 V200R010C00 Affected: S2300 V200R011C10 Affected: S2300 V200R012C00 Affected: S2300 V200R013C00 Affected: S2700 V200R005C00 Affected: S2700 V200R006C00 Affected: S2700 V200R007C00 Affected: S2700 V200R008C00 Affected: S2700 V200R010C00 Affected: S2700 V200R011C10 Affected: S2700 V200R012C00 Affected: S2700 V200R013C00 Affected: S5300 V200R003C00 Affected: S5300 V200R005C00 Affected: S5300 V200R008C00 Affected: S5300 V200R010C00 Affected: S5300 V200R011C10 Affected: S5300 V200R012C00 Affected: S5700 V200R006C00 Affected: S5700 V200R007C00 Affected: S5700 V200R008C00 Affected: S5700 V200R010C00 Affected: S5700 V200R011C10 Affected: S5700 V200R012C00 Affected: S5700 V200R013C00 Affected: S600-E V200R008C00 Affected: S600-E V200R010C00 Affected: S600-E V200R011C10 Affected: S600-E V200R012C00 Affected: S600-E V200R013C00 Affected: S6300 V200R003C00 Affected: S6300 V200R005C00 Affected: S6300 V200R007C00 Affected: S6300 V200R008C00

Date Public ?

2019-05-22 00:00

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T19:54:52.359Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190522-01-switch-en"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190522-01-switch-en"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "S12700, S12700, S12700, S12700, S12700, S12700, S12700, S12700, S1700, S1700, S1700, S1700, S1700, S1700, S2300, S2300, S2300, S2300, S2300, S2300, S2300, S2700, S2700, S2700, S2700, S2700, S2700, S2700, S2700, S5300, S5300, S5300, S5300, S5300, S5300, S5300, S5700, S5700, S5700, S5700, S5700, S5700, S5700, S5700, S5700, S600-E, S600-E, S600-E, S600-E, S600-E, S6300, S6300, S6300, S6300, S6300, S6300, S6300, S6300, S6700, S6700, S6700, S6700, S6700, S6700, S6700, S6700, S7700, S7700, S7700, S7700, S7700, S7700, S7700, S7700, S7700, S7900, S7900, S7900, S9300, S9300, S9300, S9300, S9300, S9300, S9300, S9300X, S9300X, S9300X, S9300X, S9700, S9700, S9700, S9700, S9700, S9700, S9700, S9700, S9700",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "S12700 V200R008C00"
            },
            {
              "status": "affected",
              "version": "S12700 V200R010C00"
            },
            {
              "status": "affected",
              "version": "S12700 V200R012C00"
            },
            {
              "status": "affected",
              "version": "S12700 V200R013C00"
            },
            {
              "status": "affected",
              "version": "S12700 V200R011C10"
            },
            {
              "status": "affected",
              "version": "S1700 V200R008C00"
            },
            {
              "status": "affected",
              "version": "S1700 V200R009C00"
            },
            {
              "status": "affected",
              "version": "S1700 V200R010C00"
            },
            {
              "status": "affected",
              "version": "S1700 V200R011C10"
            },
            {
              "status": "affected",
              "version": "S2300 V200R003C00"
            },
            {
              "status": "affected",
              "version": "S2300 V200R005C00"
            },
            {
              "status": "affected",
              "version": "S2300 V200R008C00"
            },
            {
              "status": "affected",
              "version": "S2300 V200R010C00"
            },
            {
              "status": "affected",
              "version": "S2300 V200R011C10"
            },
            {
              "status": "affected",
              "version": "S2300 V200R012C00"
            },
            {
              "status": "affected",
              "version": "S2300 V200R013C00"
            },
            {
              "status": "affected",
              "version": "S2700 V200R005C00"
            },
            {
              "status": "affected",
              "version": "S2700 V200R006C00"
            },
            {
              "status": "affected",
              "version": "S2700 V200R007C00"
            },
            {
              "status": "affected",
              "version": "S2700 V200R008C00"
            },
            {
              "status": "affected",
              "version": "S2700 V200R010C00"
            },
            {
              "status": "affected",
              "version": "S2700 V200R011C10"
            },
            {
              "status": "affected",
              "version": "S2700 V200R012C00"
            },
            {
              "status": "affected",
              "version": "S2700 V200R013C00"
            },
            {
              "status": "affected",
              "version": "S5300 V200R003C00"
            },
            {
              "status": "affected",
              "version": "S5300 V200R005C00"
            },
            {
              "status": "affected",
              "version": "S5300 V200R008C00"
            },
            {
              "status": "affected",
              "version": "S5300 V200R010C00"
            },
            {
              "status": "affected",
              "version": "S5300 V200R011C10"
            },
            {
              "status": "affected",
              "version": "S5300 V200R012C00"
            },
            {
              "status": "affected",
              "version": "S5700 V200R006C00"
            },
            {
              "status": "affected",
              "version": "S5700 V200R007C00"
            },
            {
              "status": "affected",
              "version": "S5700 V200R008C00"
            },
            {
              "status": "affected",
              "version": "S5700 V200R010C00"
            },
            {
              "status": "affected",
              "version": "S5700 V200R011C10"
            },
            {
              "status": "affected",
              "version": "S5700 V200R012C00"
            },
            {
              "status": "affected",
              "version": "S5700 V200R013C00"
            },
            {
              "status": "affected",
              "version": "S600-E V200R008C00"
            },
            {
              "status": "affected",
              "version": "S600-E V200R010C00"
            },
            {
              "status": "affected",
              "version": "S600-E V200R011C10"
            },
            {
              "status": "affected",
              "version": "S600-E V200R012C00"
            },
            {
              "status": "affected",
              "version": "S600-E V200R013C00"
            },
            {
              "status": "affected",
              "version": "S6300 V200R003C00"
            },
            {
              "status": "affected",
              "version": "S6300 V200R005C00"
            },
            {
              "status": "affected",
              "version": "S6300 V200R007C00"
            },
            {
              "status": "affected",
              "version": "S6300 V200R008C00"
            }
          ]
        }
      ],
      "datePublic": "2019-05-22T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "Some Huawei S series switches have a DoS vulnerability. An unauthenticated remote attacker can send crafted packets to the affected device to exploit this vulnerability. Due to insufficient verification of the packets, successful exploitation may cause the device reboot and denial of service (DoS) condition. (Vulnerability ID: HWPSIRT-2019-03109)"
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "DoS",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2019-07-26T10:06:01.000Z",
        "orgId": "25ac1063-e409-4190-8079-24548c77ea2e",
        "shortName": "huawei"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190522-01-switch-en"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190522-01-switch-en"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@huawei.com",
          "ID": "CVE-2019-5285",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "S12700, S12700, S12700, S12700, S12700, S12700, S12700, S12700, S1700, S1700, S1700, S1700, S1700, S1700, S2300, S2300, S2300, S2300, S2300, S2300, S2300, S2700, S2700, S2700, S2700, S2700, S2700, S2700, S2700, S5300, S5300, S5300, S5300, S5300, S5300, S5300, S5700, S5700, S5700, S5700, S5700, S5700, S5700, S5700, S5700, S600-E, S600-E, S600-E, S600-E, S600-E, S6300, S6300, S6300, S6300, S6300, S6300, S6300, S6300, S6700, S6700, S6700, S6700, S6700, S6700, S6700, S6700, S7700, S7700, S7700, S7700, S7700, S7700, S7700, S7700, S7700, S7900, S7900, S7900, S9300, S9300, S9300, S9300, S9300, S9300, S9300, S9300X, S9300X, S9300X, S9300X, S9700, S9700, S9700, S9700, S9700, S9700, S9700, S9700, S9700",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "S12700 V200R008C00"
                          },
                          {
                            "version_value": "S12700 V200R010C00"
                          },
                          {
                            "version_value": "S12700 V200R012C00"
                          },
                          {
                            "version_value": "S12700 V200R013C00"
                          },
                          {
                            "version_value": "S12700 V200R011C10"
                          },
                          {
                            "version_value": "S1700 V200R008C00"
                          },
                          {
                            "version_value": "S1700 V200R009C00"
                          },
                          {
                            "version_value": "S1700 V200R010C00"
                          },
                          {
                            "version_value": "S1700 V200R011C10"
                          },
                          {
                            "version_value": "S2300 V200R003C00"
                          },
                          {
                            "version_value": "S2300 V200R005C00"
                          },
                          {
                            "version_value": "S2300 V200R008C00"
                          },
                          {
                            "version_value": "S2300 V200R010C00"
                          },
                          {
                            "version_value": "S2300 V200R011C10"
                          },
                          {
                            "version_value": "S2300 V200R012C00"
                          },
                          {
                            "version_value": "S2300 V200R013C00"
                          },
                          {
                            "version_value": "S2700 V200R005C00"
                          },
                          {
                            "version_value": "S2700 V200R006C00"
                          },
                          {
                            "version_value": "S2700 V200R007C00"
                          },
                          {
                            "version_value": "S2700 V200R008C00"
                          },
                          {
                            "version_value": "S2700 V200R010C00"
                          },
                          {
                            "version_value": "S2700 V200R011C10"
                          },
                          {
                            "version_value": "S2700 V200R012C00"
                          },
                          {
                            "version_value": "S2700 V200R013C00"
                          },
                          {
                            "version_value": "S5300 V200R003C00"
                          },
                          {
                            "version_value": "S5300 V200R005C00"
                          },
                          {
                            "version_value": "S5300 V200R008C00"
                          },
                          {
                            "version_value": "S5300 V200R010C00"
                          },
                          {
                            "version_value": "S5300 V200R011C10"
                          },
                          {
                            "version_value": "S5300 V200R012C00"
                          },
                          {
                            "version_value": "S5700 V200R006C00"
                          },
                          {
                            "version_value": "S5700 V200R007C00"
                          },
                          {
                            "version_value": "S5700 V200R008C00"
                          },
                          {
                            "version_value": "S5700 V200R010C00"
                          },
                          {
                            "version_value": "S5700 V200R011C10"
                          },
                          {
                            "version_value": "S5700 V200R012C00"
                          },
                          {
                            "version_value": "S5700 V200R013C00"
                          },
                          {
                            "version_value": "S600-E V200R008C00"
                          },
                          {
                            "version_value": "S600-E V200R010C00"
                          },
                          {
                            "version_value": "S600-E V200R011C10"
                          },
                          {
                            "version_value": "S600-E V200R012C00"
                          },
                          {
                            "version_value": "S600-E V200R013C00"
                          },
                          {
                            "version_value": "S6300 V200R003C00"
                          },
                          {
                            "version_value": "S6300 V200R005C00"
                          },
                          {
                            "version_value": "S6300 V200R007C00"
                          },
                          {
                            "version_value": "S6300 V200R008C00"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Huawei"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Some Huawei S series switches have a DoS vulnerability. An unauthenticated remote attacker can send crafted packets to the affected device to exploit this vulnerability. Due to insufficient verification of the packets, successful exploitation may cause the device reboot and denial of service (DoS) condition. (Vulnerability ID: HWPSIRT-2019-03109)"
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "DoS"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190522-01-switch-en",
              "refsource": "CONFIRM",
              "url": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190522-01-switch-en"
            },
            {
              "name": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190522-01-switch-en",
              "refsource": "CONFIRM",
              "url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190522-01-switch-en"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "25ac1063-e409-4190-8079-24548c77ea2e",
    "assignerShortName": "huawei",
    "cveId": "CVE-2019-5285",
    "datePublished": "2019-06-04T18:47:35.000Z",
    "dateReserved": "2019-01-04T00:00:00.000Z",
    "dateUpdated": "2024-08-04T19:54:52.359Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

BDU:2019-02471

CVE-2019-5285 (GCVE-0-2019-5285)

Tags

Sightings

Nomenclature