First published: Fri Nov 29 2019(Updated: )
There is a use of insufficiently random values vulnerability in Huawei ViewPoint products. An unauthenticated, remote attacker can guess information by a large number of attempts. Successful exploitation may cause information leak.
Credit: psirt@huawei.com
Affected Software | Affected Version | How to fix |
---|---|---|
Huawei Vp9630 Firmware | =v500r002c00 | |
Huawei Vp9630 Firmware | =v500r002c10 | |
Huawei Vp9630 | ||
Huawei Vp9650 Firmware | =v500r002c00 | |
Huawei Vp9650 Firmware | =v500r002c10 | |
Huawei Vp9650 | ||
Huawei Vp9660 Firmware | =v500r002c00 | |
Huawei Vp9660 Firmware | =v500r002c10 | |
Huawei VP9660 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2019-5232 is a vulnerability in Huawei ViewPoint products that allows remote attackers to guess information through a large number of attempts, potentially causing information leaks.
Yes, CVE-2019-5232 is considered a high severity vulnerability with a severity value of 7.5.
Huawei Vp9630 Firmware v500r002c00 and v500r002c10, as well as Huawei Vp9650 Firmware v500r002c00 and v500r002c10 are affected.
An unauthenticated remote attacker can exploit CVE-2019-5232 by guessing information through a large number of attempts, potentially causing information leaks.
You can find more information about CVE-2019-5232 on the Huawei Security Advisories website at http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191120-01-viewpoint-en.