PT-2019-4440 · Huawei · Huawei Ap4050Dn-E+2

Publicado

2019-03-27

Atualizado

2019-06-05

CVE-2019-5298

CVSS v3.1

6.8

Média

Vetor

AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Huawei AP2000 versions prior to V200R009C00SPC800 Huawei AP4000 versions prior to V200R009C00SPC800 Huawei AP4050DN-E versions prior to V200R009C00SPC800

Description The issue is related to improper authentication in the firmware of certain Huawei access point products. This could allow an attacker to execute arbitrary commands by exploiting the vulnerability through the serial port.

Recommendations For Huawei AP2000 versions prior to V200R009C00SPC800, update to version V200R009C00SPC800 or later. For Huawei AP4000 versions prior to V200R009C00SPC800, update to version V200R009C00SPC800 or later. For Huawei AP4050DN-E versions prior to V200R009C00SPC800, update to version V200R009C00SPC800 or later.

Correção

Improper Authentication

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-287

Identificadores relacionados

BDU:2020-00198

CVE-2019-5298

Produtos afetados

Huawei Ap2000

Huawei Ap4000

Huawei Ap4050Dn-E

PT-2019-4440 · Huawei · Huawei Ap4050Dn-E+2

CVE-2019-5298

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 4