PT-2019-17548 · Huawei · Usg9500+1
Published
2019-12-26
·
Updated
2019-12-31
·
CVE-2019-5273
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
USG9500 versions V500R001C30 through V500R001C60
Description
The issue is related to a flaw in the X.509 implementation, which can cause a large heap buffer overrun error. An attacker can exploit this by using a malicious certificate, resulting in a denial of service on the affected products.
Recommendations
For USG9500 versions V500R001C30 through V500R001C60, consider restricting the use of X.509 certificates until a patch is available. As a temporary workaround, avoid using certificates that may trigger the heap buffer overrun error. At the moment, there is no information about a newer version that contains a fix for this vulnerability.
DoS
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Huawei Vrp
Usg9500