What is the vulnerability ID?

The vulnerability ID is CVE-2019-19413.

What is the severity of CVE-2019-19413?

The severity of CVE-2019-19413 is high with a severity value of 7.5.

Which products are affected by CVE-2019-19413?

Some Huawei products, including Huawei Dbs3900 Tdd Lte Firmware v100r003c00 and v100r004c10, Huawei Dp300 Firmware v500r002c00, and Huawei Rp200 Firmware v500r002c00spc200 and v600r006c00 are affected by CVE-2019-19413.

How can a remote attacker exploit CVE-2019-19413?

A remote attacker can exploit CVE-2019-19413 by sending malformed packets to the target devices.

What is the impact of a successful exploit of CVE-2019-19413?

A successful exploit of CVE-2019-19413 can cause the affected system to crash.

Vulnerability/
CVE-2019-19413

high

7.8

CWE

190 20

21/1/2020

5/8/2024

CVE-2019-19413: Integer Overflow

First published: Tue Jan 21 2020(Updated: )

There is an integer overflow vulnerability in LDAP client of some Huawei products. Due to insufficient input validation, a remote attacker could exploit this vulnerability by sending malformed packets to the target devices. Successful exploit could cause the affected system crash.

Credit: psirt@huawei.com

Affected Software	Affected Version	How to fix
Huawei Dbs3900 Tdd Lte Firmware	=v100r003c00
Huawei Dbs3900 Tdd Lte Firmware	=v100r004c10
Huawei Dbs3900 Tdd Lte
Huawei Dp300 Firmware	=v500r002c00
Huawei DP300
Huawei Rp200 Firmware	=v500r002c00spc200
Huawei Rp200 Firmware	=v600r006c00
Huawei Rp200
Huawei Te30 Firmware	=v100r001c10
Huawei Te30 Firmware	=v600r006c00
Huawei TE30
Huawei Te40 Firmware	=v600r006c00
Huawei Te40
Huawei Te50 Firmware	=v600r006c00
Huawei Te50
Huawei Te60 Firmware	=v100r001c10
Huawei Te60 Firmware	=v500r002c00
Huawei Te60 Firmware	=v600r006c00
Huawei TE60

Never miss a vulnerability like this again

Reference Links

https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-ldap-en

Frequently Asked Questions

What is the vulnerability ID?
The vulnerability ID is CVE-2019-19413.
What is the severity of CVE-2019-19413?
The severity of CVE-2019-19413 is high with a severity value of 7.5.
Which products are affected by CVE-2019-19413?
Some Huawei products, including Huawei Dbs3900 Tdd Lte Firmware v100r003c00 and v100r004c10, Huawei Dp300 Firmware v500r002c00, and Huawei Rp200 Firmware v500r002c00spc200 and v600r006c00 are affected by CVE-2019-19413.
How can a remote attacker exploit CVE-2019-19413?
A remote attacker can exploit CVE-2019-19413 by sending malformed packets to the target devices.
What is the impact of a successful exploit of CVE-2019-19413?
A successful exploit of CVE-2019-19413 can cause the affected system to crash.

collector/nvd-index
agent/references
agent/severity
agent/weakness
agent/author
agent/type
agent/event
agent/description
agent/first-publish-date
agent/softwarecombine
agent/last-modified-date
agent/tags
collector/mitre-cve
source/MITRE
vendor/huawei
canonical/huawei dbs3900 tdd lte firmware
version/huawei dbs3900 tdd lte firmware/v100r003c00
version/huawei dbs3900 tdd lte firmware/v100r004c10
canonical/huawei dbs3900 tdd lte
canonical/huawei dp300 firmware
version/huawei dp300 firmware/v500r002c00
canonical/huawei dp300
canonical/huawei rp200 firmware
version/huawei rp200 firmware/v500r002c00spc200
version/huawei rp200 firmware/v600r006c00
canonical/huawei rp200
canonical/huawei te30 firmware
version/huawei te30 firmware/v100r001c10
version/huawei te30 firmware/v600r006c00
canonical/huawei te30
canonical/huawei te40 firmware
version/huawei te40 firmware/v600r006c00
canonical/huawei te40
canonical/huawei te50 firmware
version/huawei te50 firmware/v600r006c00
canonical/huawei te50
canonical/huawei te60 firmware
version/huawei te60 firmware/v100r001c10
version/huawei te60 firmware/v500r002c00
version/huawei te60 firmware/v600r006c00
canonical/huawei te60