Vulnerability Details CVE-2019-5294
There is an out of bound read vulnerability in some Huawei products. A remote, unauthenticated attacker may send a corrupt or crafted message to the affected products. Due to a buffer read overflow error when parsing the message, successful exploit may cause some service to be abnormal.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 62.7%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
References
Products affected by CVE-2019-5294
-
cpe:2.3:h:huawei:ar120-s:-
-
cpe:2.3:h:huawei:ar1200-s:-
-
cpe:2.3:h:huawei:ar1200:-
-
cpe:2.3:h:huawei:ar150-s:-
-
cpe:2.3:h:huawei:ar150:-
-
cpe:2.3:h:huawei:ar160:-
-
cpe:2.3:h:huawei:ar200-s:-
-
cpe:2.3:h:huawei:ar200:-
-
cpe:2.3:h:huawei:ar2200-s:-
-
cpe:2.3:h:huawei:ar2200:-
-
cpe:2.3:h:huawei:ar3200:-
-
cpe:2.3:h:huawei:ar3600:-
-
cpe:2.3:h:huawei:netengine16ex:-
-
cpe:2.3:h:huawei:srg1300:-
-
cpe:2.3:h:huawei:srg2300:-
-
cpe:2.3:h:huawei:srg3300:-
-
cpe:2.3:o:huawei:ar120-s_firmware:v200r005c20
-
cpe:2.3:o:huawei:ar120-s_firmware:v200r006c10
-
cpe:2.3:o:huawei:ar120-s_firmware:v200r007c00
-
cpe:2.3:o:huawei:ar1200-s_firmware:v200r005c20
-
cpe:2.3:o:huawei:ar1200-s_firmware:v200r006c10
-
cpe:2.3:o:huawei:ar1200-s_firmware:v200r007c00
-
cpe:2.3:o:huawei:ar1200_firmware:v200r005c20
-
cpe:2.3:o:huawei:ar1200_firmware:v200r006c10
-
cpe:2.3:o:huawei:ar1200_firmware:v200r007c00
-
cpe:2.3:o:huawei:ar150-s_firmware:v200r005c20
-
cpe:2.3:o:huawei:ar150-s_firmware:v200r006c10
-
cpe:2.3:o:huawei:ar150-s_firmware:v200r007c00
-
cpe:2.3:o:huawei:ar150_firmware:v200r005c20
-
cpe:2.3:o:huawei:ar150_firmware:v200r006c10
-
cpe:2.3:o:huawei:ar150_firmware:v200r007c00
-
cpe:2.3:o:huawei:ar160_firmware:v200r005c20
-
cpe:2.3:o:huawei:ar160_firmware:v200r006c10
-
cpe:2.3:o:huawei:ar160_firmware:v200r007c00
-
cpe:2.3:o:huawei:ar200-s_firmware:v200r005c20
-
cpe:2.3:o:huawei:ar200-s_firmware:v200r006c10
-
cpe:2.3:o:huawei:ar200-s_firmware:v200r007c00
-
cpe:2.3:o:huawei:ar200_firmware:v200r005c20
-
cpe:2.3:o:huawei:ar200_firmware:v200r006c10
-
cpe:2.3:o:huawei:ar200_firmware:v200r007c00
-
cpe:2.3:o:huawei:ar2200-s_firmware:v200r005c20
-
cpe:2.3:o:huawei:ar2200-s_firmware:v200r006c10
-
cpe:2.3:o:huawei:ar2200-s_firmware:v200r007c00
-
cpe:2.3:o:huawei:ar2200_firmware:v200r005c20
-
cpe:2.3:o:huawei:ar2200_firmware:v200r006c10
-
cpe:2.3:o:huawei:ar2200_firmware:v200r007c00
-
cpe:2.3:o:huawei:ar3200_firmware:v200r005c20
-
cpe:2.3:o:huawei:ar3200_firmware:v200r006c10
-
cpe:2.3:o:huawei:ar3600_firmware:v200r006c10
-
cpe:2.3:o:huawei:ar3600_firmware:v200r007c00
-
cpe:2.3:o:huawei:netengine16ex_firmware:v200r005c20
-
cpe:2.3:o:huawei:netengine16ex_firmware:v200r006c10
-
cpe:2.3:o:huawei:netengine16ex_firmware:v200r007c00
-
cpe:2.3:o:huawei:srg1300_firmware:v200r005c20
-
cpe:2.3:o:huawei:srg1300_firmware:v200r006c10
-
cpe:2.3:o:huawei:srg1300_firmware:v200r007c00
-
cpe:2.3:o:huawei:srg2300_firmware:v200r005c20
-
cpe:2.3:o:huawei:srg2300_firmware:v200r006c10
-
cpe:2.3:o:huawei:srg2300_firmware:v200r007c00
-
cpe:2.3:o:huawei:srg3300_firmware:v200r005c20
-
cpe:2.3:o:huawei:srg3300_firmware:v200r006c10
-
cpe:2.3:o:huawei:srg3300_firmware:v200r007c00