PT-2019-17541 · Huawei · Ar3200+12
Raphaël Lob
·
Published
2019-12-11
·
Updated
2020-08-24
·
CVE-2019-5259
CVSS v3.1
6.5
Medium
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Huawei AR120-S version
Huawei AR1200 version
Huawei AR1200-S version
Huawei AR150 version
Huawei AR150-S version
Huawei AR160 version
Huawei AR200 version
Huawei AR200-S version
Huawei AR2200 version
Huawei AR2200-S version
Huawei AR3200 version
Huawei AR3600 version
Description
The issue is related to an information leakage vulnerability. An attacker with low permissions can view some high-privilege information by running specific commands. Successful exploitation could cause an information disclosure condition.
Recommendations
For Huawei AR120-S, update to a version that includes a fix for this issue.
For Huawei AR1200, update to a version that includes a fix for this issue.
For Huawei AR1200-S, update to a version that includes a fix for this issue.
For Huawei AR150, update to a version that includes a fix for this issue.
For Huawei AR150-S, update to a version that includes a fix for this issue.
For Huawei AR160, update to a version that includes a fix for this issue.
For Huawei AR200, update to a version that includes a fix for this issue.
For Huawei AR200-S, update to a version that includes a fix for this issue.
For Huawei AR2200, update to a version that includes a fix for this issue.
For Huawei AR2200-S, update to a version that includes a fix for this issue.
For Huawei AR3200, update to a version that includes a fix for this issue.
For Huawei AR3600, update to a version that includes a fix for this issue.
Fix
Improper Privilege Management
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ar120-S
Ar1200
Ar1200-S
Ar150
Ar150-S
Ar160
Ar200
Ar200-S
Ar2200
Ar2200-S
Ar3200
Ar3600
Huawei Vrp