Weak Algorithm Vulnerability in Huawei Products
CVE-2019-19397

7.5HIGH

Key Information:

Vendor: Huawei
Status: S12700;s1700;s2700;s5700;s6700;s7700;s9700
Vendor: CVE Published:; 13 December 2019

What is CVE-2019-19397?

Certain Huawei products are affected by a vulnerability that utilizes weak algorithms as default settings. This weakness can be exploited by attackers, potentially leading to unauthorized information disclosure. It is critical for users of these products to ensure that stronger algorithm settings are implemented to safeguard sensitive data. For more information, check the Huawei Security Advisory.

Affected Version(s)

S12700;S1700;S2700;S5700;S6700;S7700;S9700 V200R007C00

S12700;S1700;S2700;S5700;S6700;S7700;S9700 V200R007C01

S12700;S1700;S2700;S5700;S6700;S7700;S9700 V200R007C20

References

http://www.huawei.com/en/psirt/security-advisories/huawei...

x_refsource_MISC

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 13, 2019
Vulnerability Reserved
Nov 29, 2019