CVE-2019-19414
Severity Score
7.5
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
There is an integer overflow vulnerability in LDAP server of some Huawei products. Due to insufficient input validation, a remote attacker could exploit this vulnerability by sending malformed packets to the target devices. Successful exploit could cause the affected system crash.
Se presenta una vulnerabilidad de desbordamiento de enteros en el servidor LDAP de algunos productos Huawei. Debido a una comprobación de entrada insuficiente, un atacante remoto podría explotar esta vulnerabilidad mediante el envío de paquetes malformados hacia los dispositivos de destino. Una explotación con éxito podría causar el bloqueo del sistema afectado.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2019-11-29 CVE Reserved
- 2020-01-21 CVE Published
- 2023-03-07 EPSS Updated
- 2024-08-05 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-190: Integer Overflow or Wraparound
CAPEC
References (1)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-ldap-en | 2020-01-28 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Huawei Search vendor "Huawei" | Dbs3900 Tdd Lte Firmware Search vendor "Huawei" for product "Dbs3900 Tdd Lte Firmware" | v100r003c00 Search vendor "Huawei" for product "Dbs3900 Tdd Lte Firmware" and version "v100r003c00" | - |
Affected
| in | Huawei Search vendor "Huawei" | Dbs3900 Tdd Lte Search vendor "Huawei" for product "Dbs3900 Tdd Lte" | - | - |
Safe
|
| Huawei Search vendor "Huawei" | Dbs3900 Tdd Lte Firmware Search vendor "Huawei" for product "Dbs3900 Tdd Lte Firmware" | v100r004c10 Search vendor "Huawei" for product "Dbs3900 Tdd Lte Firmware" and version "v100r004c10" | - |
Affected
| in | Huawei Search vendor "Huawei" | Dbs3900 Tdd Lte Search vendor "Huawei" for product "Dbs3900 Tdd Lte" | - | - |
Safe
|
| Huawei Search vendor "Huawei" | Dp300 Firmware Search vendor "Huawei" for product "Dp300 Firmware" | v500r002c00 Search vendor "Huawei" for product "Dp300 Firmware" and version "v500r002c00" | - |
Affected
| in | Huawei Search vendor "Huawei" | Dp300 Search vendor "Huawei" for product "Dp300" | - | - |
Safe
|
| Huawei Search vendor "Huawei" | Rp200 Firmware Search vendor "Huawei" for product "Rp200 Firmware" | v500r002c00spc200 Search vendor "Huawei" for product "Rp200 Firmware" and version "v500r002c00spc200" | - |
Affected
| in | Huawei Search vendor "Huawei" | Rp200 Search vendor "Huawei" for product "Rp200" | - | - |
Safe
|
| Huawei Search vendor "Huawei" | Rp200 Firmware Search vendor "Huawei" for product "Rp200 Firmware" | v600r006c00 Search vendor "Huawei" for product "Rp200 Firmware" and version "v600r006c00" | - |
Affected
| in | Huawei Search vendor "Huawei" | Rp200 Search vendor "Huawei" for product "Rp200" | - | - |
Safe
|
| Huawei Search vendor "Huawei" | Te30 Firmware Search vendor "Huawei" for product "Te30 Firmware" | v100r001c10 Search vendor "Huawei" for product "Te30 Firmware" and version "v100r001c10" | - |
Affected
| in | Huawei Search vendor "Huawei" | Te30 Search vendor "Huawei" for product "Te30" | - | - |
Safe
|
| Huawei Search vendor "Huawei" | Te30 Firmware Search vendor "Huawei" for product "Te30 Firmware" | v600r006c00 Search vendor "Huawei" for product "Te30 Firmware" and version "v600r006c00" | - |
Affected
| in | Huawei Search vendor "Huawei" | Te30 Search vendor "Huawei" for product "Te30" | - | - |
Safe
|
| Huawei Search vendor "Huawei" | Te40 Firmware Search vendor "Huawei" for product "Te40 Firmware" | v600r006c00 Search vendor "Huawei" for product "Te40 Firmware" and version "v600r006c00" | - |
Affected
| in | Huawei Search vendor "Huawei" | Te40 Search vendor "Huawei" for product "Te40" | - | - |
Safe
|
| Huawei Search vendor "Huawei" | Te50 Firmware Search vendor "Huawei" for product "Te50 Firmware" | v600r006c00 Search vendor "Huawei" for product "Te50 Firmware" and version "v600r006c00" | - |
Affected
| in | Huawei Search vendor "Huawei" | Te50 Search vendor "Huawei" for product "Te50" | - | - |
Safe
|
| Huawei Search vendor "Huawei" | Te60 Firmware Search vendor "Huawei" for product "Te60 Firmware" | v100r001c10 Search vendor "Huawei" for product "Te60 Firmware" and version "v100r001c10" | - |
Affected
| in | Huawei Search vendor "Huawei" | Te60 Search vendor "Huawei" for product "Te60" | - | - |
Safe
|
| Huawei Search vendor "Huawei" | Te60 Firmware Search vendor "Huawei" for product "Te60 Firmware" | v500r002c00 Search vendor "Huawei" for product "Te60 Firmware" and version "v500r002c00" | - |
Affected
| in | Huawei Search vendor "Huawei" | Te60 Search vendor "Huawei" for product "Te60" | - | - |
Safe
|
| Huawei Search vendor "Huawei" | Te60 Firmware Search vendor "Huawei" for product "Te60 Firmware" | v600r006c00 Search vendor "Huawei" for product "Te60 Firmware" and version "v600r006c00" | - |
Affected
| in | Huawei Search vendor "Huawei" | Te60 Search vendor "Huawei" for product "Te60" | - | - |
Safe
|