Null Pointer Dereference Vulnerability in Huawei Network Products
CVE-2019-5256
Key Information:
Summary
Huawei network products are susceptible to a null pointer dereference vulnerability that affects multiple models. This vulnerability occurs when the system mistakenly dereferences a pointer it presumes to be valid, but is in fact NULL. An attacker with local access can exploit this flaw by sending specially crafted parameters, potentially leading to service interruptions and system reboots. It is crucial for users of the affected products to apply the latest software updates and follow recommended security practices to mitigate the risks associated with this vulnerability.
Affected Version(s)
AP2000;IPS Module;NGFW Module;NIP6300;NIP6600;NIP6800;S5700;SVN5600;SVN5800;SVN5800-C;SeMG9811;Secospace AntiDDoS8000;Secospace USG6300;Secospace USG6500;Secospace USG6600;USG6000V;eSpace U1981 V200R005C30
AP2000;IPS Module;NGFW Module;NIP6300;NIP6600;NIP6800;S5700;SVN5600;SVN5800;SVN5800-C;SeMG9811;Secospace AntiDDoS8000;Secospace USG6300;Secospace USG6500;Secospace USG6600;USG6000V;eSpace U1981 V200R006C10
AP2000;IPS Module;NGFW Module;NIP6300;NIP6600;NIP6800;S5700;SVN5600;SVN5800;SVN5800-C;SeMG9811;Secospace AntiDDoS8000;Secospace USG6300;Secospace USG6500;Secospace USG6600;USG6000V;eSpace U1981 V200R006C20
References
CVSS V3.1
Timeline
Vulnerability published
Vulnerability Reserved