Lucene search

K
nvd[email protected]NVD:CVE-2019-5259
HistoryDec 16, 2019 - 10:15 p.m.

CVE-2019-5259

2019-12-1622:15:11
CWE-269
web.nvd.nist.gov
4

CVSS2

4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:S/C:P/I:N/A:N

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

AI Score

6.2

Confidence

High

EPSS

0.001

Percentile

28.4%

There is an information leakage vulnerability on some Huawei products(AR120-S;AR1200;AR1200-S;AR150;AR150-S;AR160;AR200;AR200-S;AR2200;AR2200-S;AR3200;AR3600). An attacker with low permissions can view some high-privilege information by running specific commands.Successful exploit could cause an information disclosure condition.

Affected configurations

Nvd
Node
huaweiar120-s_firmwareMatchv200r005c32
OR
huaweiar120-s_firmwareMatchv200r006c10
OR
huaweiar120-s_firmwareMatchv200r007c00
OR
huaweiar120-s_firmwareMatchv200r008c50
OR
huaweiar120-s_firmwareMatchv200r009c00
OR
huaweiar120-s_firmwareMatchv200r010c00
AND
huaweiar120-sMatch-
Node
huaweiar1200_firmwareMatchv200r005c20
OR
huaweiar1200_firmwareMatchv200r005c32
OR
huaweiar1200_firmwareMatchv200r006c10
OR
huaweiar1200_firmwareMatchv200r007c00
OR
huaweiar1200_firmwareMatchv200r008c50
OR
huaweiar1200_firmwareMatchv200r009c00
AND
huaweiar1200Match-
Node
huaweiar1200-s_firmwareMatchv200r005c20
OR
huaweiar1200-s_firmwareMatchv200r005c32
OR
huaweiar1200-s_firmwareMatchv200r006c10
OR
huaweiar1200-s_firmwareMatchv200r007c00
OR
huaweiar1200-s_firmwareMatchv200r008c50
OR
huaweiar1200-s_firmwareMatchv200r009c00
AND
huaweiar1200-sMatch-
Node
huaweiar150_firmwareMatchv200r005c20
OR
huaweiar150_firmwareMatchv200r005c32
OR
huaweiar150_firmwareMatchv200r006c10
OR
huaweiar150_firmwareMatchv200r007c00
OR
huaweiar150_firmwareMatchv200r008c50
OR
huaweiar150_firmwareMatchv200r009c00
AND
huaweiar150Match-
Node
huaweiar150-s_firmwareMatchv200r005c00
OR
huaweiar150-s_firmwareMatchv200r005c32
OR
huaweiar150-s_firmwareMatchv200r006c10
OR
huaweiar150-s_firmwareMatchv200r007c00
OR
huaweiar150-s_firmwareMatchv200r008c50
OR
huaweiar150-s_firmwareMatchv200r009c00
AND
huaweiar150-sMatch-
Node
huaweiar160_firmwareMatchv200r005c20
OR
huaweiar160_firmwareMatchv200r005c32
OR
huaweiar160_firmwareMatchv200r006c10
OR
huaweiar160_firmwareMatchv200r007c00
OR
huaweiar160_firmwareMatchv200r008c50
OR
huaweiar160_firmwareMatchv200r009c00
AND
huaweiar160Match-
Node
huaweiar200_firmwareMatchv200r005c20
OR
huaweiar200_firmwareMatchv200r005c32
OR
huaweiar200_firmwareMatchv200r006c10
OR
huaweiar200_firmwareMatchv200r007c00
OR
huaweiar200_firmwareMatchv200r008c50
OR
huaweiar200_firmwareMatchv200r009c00
AND
huaweiar200Match-
Node
huaweiar200-s_firmwareMatchv200r005c20
OR
huaweiar200-s_firmwareMatchv200r005c32
OR
huaweiar200-s_firmwareMatchv200r006c10
OR
huaweiar200-s_firmwareMatchv200r007c00
OR
huaweiar200-s_firmwareMatchv200r008c50
OR
huaweiar200-s_firmwareMatchv200r009c00
AND
huaweiar200-sMatch-
Node
huaweiar2200_firmwareMatchv200r005c20
OR
huaweiar2200_firmwareMatchv200r005c32
OR
huaweiar2200_firmwareMatchv200r006c10
OR
huaweiar2200_firmwareMatchv200r007c00
OR
huaweiar2200_firmwareMatchv200r008c50
OR
huaweiar2200_firmwareMatchv200r009c00
AND
huaweiar2200Match-
Node
huaweiar2200-s_firmwareMatchv200r005c20
OR
huaweiar2200-s_firmwareMatchv200r005c32
OR
huaweiar2200-s_firmwareMatchv200r006c10
OR
huaweiar2200-s_firmwareMatchv200r007c00
OR
huaweiar2200-s_firmwareMatchv200r008c50
OR
huaweiar2200-s_firmwareMatchv200r009c00
AND
huaweiar2200-sMatch-
Node
huaweiar3200_firmwareMatchv200r005c20
OR
huaweiar3200_firmwareMatchv200r005c32
OR
huaweiar3200_firmwareMatchv200r006c10
OR
huaweiar3200_firmwareMatchv200r007c00
OR
huaweiar3200_firmwareMatchv200r008c50
OR
huaweiar3200_firmwareMatchv200r009c00
AND
huaweiar3200Match-
Node
huaweiar3600_firmwareMatchv200r006c10
OR
huaweiar3600_firmwareMatchv200r007c00
OR
huaweiar3600_firmwareMatchv200r008c50
OR
huaweiar3600_firmwareMatchv200r009c00
AND
huaweiar3600Match-
VendorProductVersionCPE
huaweiar120-s_firmwarev200r005c32cpe:2.3:o:huawei:ar120-s_firmware:v200r005c32:*:*:*:*:*:*:*
huaweiar120-s_firmwarev200r006c10cpe:2.3:o:huawei:ar120-s_firmware:v200r006c10:*:*:*:*:*:*:*
huaweiar120-s_firmwarev200r007c00cpe:2.3:o:huawei:ar120-s_firmware:v200r007c00:*:*:*:*:*:*:*
huaweiar120-s_firmwarev200r008c50cpe:2.3:o:huawei:ar120-s_firmware:v200r008c50:*:*:*:*:*:*:*
huaweiar120-s_firmwarev200r009c00cpe:2.3:o:huawei:ar120-s_firmware:v200r009c00:*:*:*:*:*:*:*
huaweiar120-s_firmwarev200r010c00cpe:2.3:o:huawei:ar120-s_firmware:v200r010c00:*:*:*:*:*:*:*
huaweiar120-s-cpe:2.3:h:huawei:ar120-s:-:*:*:*:*:*:*:*
huaweiar1200_firmwarev200r005c20cpe:2.3:o:huawei:ar1200_firmware:v200r005c20:*:*:*:*:*:*:*
huaweiar1200_firmwarev200r005c32cpe:2.3:o:huawei:ar1200_firmware:v200r005c32:*:*:*:*:*:*:*
huaweiar1200_firmwarev200r006c10cpe:2.3:o:huawei:ar1200_firmware:v200r006c10:*:*:*:*:*:*:*
Rows per page:
1-10 of 821

CVSS2

4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:S/C:P/I:N/A:N

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

AI Score

6.2

Confidence

High

EPSS

0.001

Percentile

28.4%

Related for NVD:CVE-2019-5259