7.5
CWE
330
Advisory Published
Updated

CVE-2019-5232

First published: Fri Nov 29 2019(Updated: )

There is a use of insufficiently random values vulnerability in Huawei ViewPoint products. An unauthenticated, remote attacker can guess information by a large number of attempts. Successful exploitation may cause information leak.

Credit: psirt@huawei.com

Affected SoftwareAffected VersionHow to fix
Huawei Vp9630 Firmware=v500r002c00
Huawei Vp9630 Firmware=v500r002c10
Huawei Vp9630
Huawei Vp9650 Firmware=v500r002c00
Huawei Vp9650 Firmware=v500r002c10
Huawei Vp9650
Huawei Vp9660 Firmware=v500r002c00
Huawei Vp9660 Firmware=v500r002c10
Huawei VP9660

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Frequently Asked Questions

  • What is CVE-2019-5232?

    CVE-2019-5232 is a vulnerability in Huawei ViewPoint products that allows remote attackers to guess information through a large number of attempts, potentially causing information leaks.

  • Is CVE-2019-5232 a high severity vulnerability?

    Yes, CVE-2019-5232 is considered a high severity vulnerability with a severity value of 7.5.

  • Which Huawei ViewPoint products are affected by CVE-2019-5232?

    Huawei Vp9630 Firmware v500r002c00 and v500r002c10, as well as Huawei Vp9650 Firmware v500r002c00 and v500r002c10 are affected.

  • How can an attacker exploit CVE-2019-5232?

    An unauthenticated remote attacker can exploit CVE-2019-5232 by guessing information through a large number of attempts, potentially causing information leaks.

  • Where can I find more information about CVE-2019-5232?

    You can find more information about CVE-2019-5232 on the Huawei Security Advisories website at http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191120-01-viewpoint-en.

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203