What is CVE-2019-19414?

CVE-2019-19414 is an integer overflow vulnerability in the LDAP server of certain Huawei products.

How does CVE-2019-19414 affect Huawei products?

CVE-2019-19414 affects Huawei products running specific firmware versions, allowing a remote attacker to crash the affected system.

How can an attacker exploit CVE-2019-19414?

An attacker can exploit CVE-2019-19414 by sending malformed packets to the target devices.

What is the severity of CVE-2019-19414?

CVE-2019-19414 has a severity rating of 7.5, classified as high severity.

Where can I find more information about CVE-2019-19414?

You can find more information about CVE-2019-19414 on the Huawei security advisory page: https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-ldap-en

Vulnerability/
CVE-2019-19414

high

7.8

CWE

190 20

21/1/2020

5/8/2024

CVE-2019-19414: Integer Overflow

First published: Tue Jan 21 2020(Updated: )

There is an integer overflow vulnerability in LDAP server of some Huawei products. Due to insufficient input validation, a remote attacker could exploit this vulnerability by sending malformed packets to the target devices. Successful exploit could cause the affected system crash.

Credit: psirt@huawei.com

Affected Software	Affected Version	How to fix
Huawei Dbs3900 Tdd Lte Firmware	=v100r003c00
Huawei Dbs3900 Tdd Lte Firmware	=v100r004c10
Huawei Dbs3900 Tdd Lte
Huawei Dp300 Firmware	=v500r002c00
Huawei DP300
Huawei Rp200 Firmware	=v500r002c00spc200
Huawei Rp200 Firmware	=v600r006c00
Huawei Rp200
Huawei Te30 Firmware	=v100r001c10
Huawei Te30 Firmware	=v600r006c00
Huawei TE30
Huawei Te40 Firmware	=v600r006c00
Huawei Te40
Huawei Te50 Firmware	=v600r006c00
Huawei Te50
Huawei Te60 Firmware	=v100r001c10
Huawei Te60 Firmware	=v500r002c00
Huawei Te60 Firmware	=v600r006c00
Huawei TE60

Never miss a vulnerability like this again

Reference Links

https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-ldap-en

Frequently Asked Questions

What is CVE-2019-19414?
CVE-2019-19414 is an integer overflow vulnerability in the LDAP server of certain Huawei products.
How does CVE-2019-19414 affect Huawei products?
CVE-2019-19414 affects Huawei products running specific firmware versions, allowing a remote attacker to crash the affected system.
How can an attacker exploit CVE-2019-19414?
An attacker can exploit CVE-2019-19414 by sending malformed packets to the target devices.
What is the severity of CVE-2019-19414?
CVE-2019-19414 has a severity rating of 7.5, classified as high severity.
Where can I find more information about CVE-2019-19414?
You can find more information about CVE-2019-19414 on the Huawei security advisory page: https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-ldap-en

collector/nvd-index
agent/author
agent/severity
agent/type
agent/event
agent/references
agent/weakness
agent/description
agent/softwarecombine
agent/first-publish-date
agent/last-modified-date
agent/tags
collector/mitre-cve
source/MITRE
vendor/huawei
canonical/huawei dbs3900 tdd lte firmware
version/huawei dbs3900 tdd lte firmware/v100r003c00
version/huawei dbs3900 tdd lte firmware/v100r004c10
canonical/huawei dbs3900 tdd lte
canonical/huawei dp300 firmware
version/huawei dp300 firmware/v500r002c00
canonical/huawei dp300
canonical/huawei rp200 firmware
version/huawei rp200 firmware/v500r002c00spc200
version/huawei rp200 firmware/v600r006c00
canonical/huawei rp200
canonical/huawei te30 firmware
version/huawei te30 firmware/v100r001c10
version/huawei te30 firmware/v600r006c00
canonical/huawei te30
canonical/huawei te40 firmware
version/huawei te40 firmware/v600r006c00
canonical/huawei te40
canonical/huawei te50 firmware
version/huawei te50 firmware/v600r006c00
canonical/huawei te50
canonical/huawei te60 firmware
version/huawei te60 firmware/v100r001c10
version/huawei te60 firmware/v500r002c00
version/huawei te60 firmware/v600r006c00
canonical/huawei te60