PT-2019-17535 · Huawei · E5572-855

Publicado

2019-12-13

Atualizado

2019-12-30

CVE-2019-5253

CVSS v2.0

7.1

Alta

Vetor

AV:N/AC:M/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions E5572-855 versions earlier than 8.0.1.3(H335SP1C233)

Description The device has an improper authentication issue, where it does not perform sufficient authentication for certain operations. This could allow an attacker to cause the device to reboot after launching a man-in-the-middle attack.

Recommendations For versions earlier than 8.0.1.3(H335SP1C233), update to version 8.0.1.3(H335SP1C233) or later to resolve the issue. As a temporary workaround, consider restricting access to the device to minimize the risk of exploitation.

Correção

Improper Authentication

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-287

Identificadores relacionados

CVE-2019-5253

Produtos afetados

E5572-855

PT-2019-17535 · Huawei · E5572-855

CVE-2019-5253

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 3