First published: Thu Dec 26 2019(Updated: )
USG9500 with versions of V500R001C30;V500R001C60 have a denial of service vulnerability. Due to a flaw in the X.509 implementation in the affected products which can result in an infinite loop, an attacker may exploit the vulnerability via a malicious certificate to perform a denial of service attack on the affected products.
Credit: psirt@huawei.com
Affected Software | Affected Version | How to fix |
---|---|---|
Huawei Usg9500 Firmware | =v500r001c30 | |
Huawei Usg9500 Firmware | =v500r001c60 | |
Huawei USG9500 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID of this denial of service vulnerability is CVE-2019-5274.
The severity level of CVE-2019-5274 is high with a score of 7.5.
USG9500 with versions V500R001C30 and V500R001C60 of Huawei Usg9500 Firmware are affected by CVE-2019-5274.
An attacker can exploit CVE-2019-5274 by using a malicious certificate to trigger an infinite loop in the X.509 implementation of the affected products, resulting in a denial of service attack.
Yes, Huawei has provided a security advisory with recommended actions to mitigate the CVE-2019-5274 vulnerability. Please refer to the provided reference link for more information.