CVE-2019-19411

Name of the Vulnerable Software and Affected Versions Huawei USG9500 versions V500R001C30SPC100, V500R001C30SPC200, V500R001C30SPC600, V500R001C60SPC500, V500R005C00SPC100, V500R005C00SPC200

Description The issue is related to an information leakage vulnerability due to improper processing of the initialization vector used in a specific encryption algorithm. An attacker who gains access to this cryptographic primitive may exploit this vulnerability, causing the value of the confidentiality associated with its use to be diminished.

Recommendations For versions V500R001C30SPC100, V500R001C30SPC200, V500R001C30SPC600, V500R001C60SPC500, V500R005C00SPC100, V500R005C00SPC200, update to a version that properly processes the initialization vector used in the encryption algorithm to prevent information leakage. At the moment, there is no information about a newer version that contains a fix for this vulnerability.