Vulnerability Details CVE-2019-19413
There is an integer overflow vulnerability in LDAP client of some Huawei products. Due to insufficient input validation, a remote attacker could exploit this vulnerability by sending malformed packets to the target devices. Successful exploit could cause the affected system crash.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 54.9%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 7.8
References
Products affected by CVE-2019-19413
-
cpe:2.3:h:huawei:dbs3900_tdd_lte:-
-
cpe:2.3:h:huawei:dp300:-
-
cpe:2.3:h:huawei:rp200:-
-
cpe:2.3:h:huawei:te30:-
-
cpe:2.3:h:huawei:te40:-
-
cpe:2.3:h:huawei:te50:-
-
cpe:2.3:h:huawei:te60:-
-
cpe:2.3:o:huawei:dbs3900_tdd_lte_firmware:v100r003c00
-
cpe:2.3:o:huawei:dbs3900_tdd_lte_firmware:v100r004c10
-
cpe:2.3:o:huawei:dp300_firmware:v500r002c00
-
cpe:2.3:o:huawei:rp200_firmware:v500r002c00spc200
-
cpe:2.3:o:huawei:rp200_firmware:v600r006c00
-
cpe:2.3:o:huawei:te30_firmware:v100r001c10
-
cpe:2.3:o:huawei:te30_firmware:v600r006c00
-
cpe:2.3:o:huawei:te40_firmware:v600r006c00
-
cpe:2.3:o:huawei:te50_firmware:v600r006c00
-
cpe:2.3:o:huawei:te60_firmware:v100r001c10
-
cpe:2.3:o:huawei:te60_firmware:v500r002c00
-
cpe:2.3:o:huawei:te60_firmware:v600r006c00