Information Leakage Vulnerability in Huawei Network Products
CVE-2019-5259

6.5MEDIUM

Key Information:

Summary

An information leakage issue exists in several Huawei networking products, allowing unauthorized users to access sensitive data. This vulnerability affects specific models in the AR series, enabling low-privilege attackers to execute commands that potentially disclose high-privilege information. Successful exploitation could lead to unwanted information exposure, undermining the confidentiality of network configurations and related data.

Affected Version(s)

AR120-S;AR1200;AR1200-S;AR150;AR150-S;AR160;AR200;AR200-S;AR2200;AR2200-S;AR3200;AR3600 V200R005C20

AR120-S;AR1200;AR1200-S;AR150;AR150-S;AR160;AR200;AR200-S;AR2200;AR2200-S;AR3200;AR3600 V200R005C32

AR120-S;AR1200;AR1200-S;AR150;AR150-S;AR160;AR200;AR200-S;AR2200;AR2200-S;AR3200;AR3600 V200R006C10

References

CVSS V3.1

Score:
6.5
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.