CVE-2019-5272

CWE-3543 documents3 sources
Severity
4.9MEDIUM
EPSS
0.1%
top 80.30%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Huawei Usg9500Huawei Usg9500 Firmware
Timeline
PublishedDec 26
Latest updateMay 24

Description

USG9500 with versions of V500R001C30;V500R001C60 have a missing integrity checking vulnerability. The software of the affected products does not check the integrity which may allow an attacker with high privilege to make malicious modifications without detection.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:NExploitability: 1.2 | Impact: 3.6

Affected Packages2 packages

CVEListV5huawei/usg9500V500R001C30, V500R001C60+1
NVDhuawei/usg9500_firmwarev500r001c30, v500r001c60+1

🔴Vulnerability Details

2
GHSA
GHSA-6q7x-992j-759g: USG9500 with versions of V500R001C30;V500R001C60 have a missing integrity checking vulnerability2022-05-24
CVEList
CVE-2019-5272: USG9500 with versions of V500R001C30;V500R001C60 have a missing integrity checking vulnerability2019-12-26
CVE-2019-5272 (MEDIUM CVSS 4.9) | USG9500 with versions of V500R001C3 | cvebase.io