#VU23627 NULL pointer dereference in Huawei products - CVE-2019-5256


Vulnerability identifier: #VU23627

Vulnerability risk: Low

CVSSv4.0: 4 [CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2019-5256

CWE-ID: CWE-476

Exploitation vector: Local

Exploit availability: No

Vulnerable software:
Huawei AP2000
Hardware solutions / Routers & switches, VoIP, GSM, etc
Huawei IPS Module
Server applications / IDS/IPS systems, Firewalls and proxy servers
Huawei NIP6300
Server applications / IDS/IPS systems, Firewalls and proxy servers
Huawei NIP6600
Server applications / IDS/IPS systems, Firewalls and proxy servers
Huawei NIP6800
Server applications / IDS/IPS systems, Firewalls and proxy servers
Huawei Secospace AntiDDoS8000
Server applications / IDS/IPS systems, Firewalls and proxy servers
Huawei NGFW Module
Server applications / Other server solutions
Huawei SVN5600
Server applications / Other server solutions
Huawei SVN5800
Server applications / Other server solutions
Huawei SVN5800-C
Server applications / Other server solutions
Huawei S5700
Hardware solutions / Routers for home users
Huawei SeMG9811
Other software / Other software solutions
Huawei Secospace USG6300
Server applications / Server solutions for antivurus protection
Huawei Secospace USG6500
Server applications / Server solutions for antivurus protection
Huawei Secospace USG6600
Server applications / Server solutions for antivurus protection
Huawei USG6000V
Server applications / Remote management servers, RDP, SSH
Huawei eSpace U1981
Server applications / Remote management servers, RDP, SSH

Vendor: Huawei

Description

The vulnerability allows a local attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to a NULL pointer dereference error. A local attacker can send specially crafted parameters, cause a denial of service condition and the process reboot.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

Huawei AP2000: V200R005C30 - V200R009C00

Huawei IPS Module: V500R001C00SPC300 - V500R005C00

Huawei NGFW Module: V500R001C00SPC300 - V500R005C00

Huawei NIP6300: V500R001C00SPC300 - V500R005C00

Huawei NIP6600: V500R001C00SPC300 - V500R005C00

Huawei NIP6800: V500R001C50PWE - V500R005C00

Huawei S5700: V200R005C03

Huawei SVN5600: V200R003C00SPC100

Huawei SVN5800: V200R003C00SPC100

Huawei SVN5800-C: V200R003C00SPC100

Huawei SeMG9811: V500R002C20 - V500R005C00

Huawei Secospace AntiDDoS8000: V500R001C00SPC200 - V500R005C00

Huawei Secospace USG6300: V100R001C20SPC100 - V500R005C00

Huawei Secospace USG6500: V100R001C20SPC100 - V500R005C00

Huawei Secospace USG6600: V100R001C00SPC200 - V500R005C00

Huawei USG6000V: V500R001C10SPC100 - V500R005C00

Huawei eSpace U1981: V200R003C50SPC700

External links
https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191211-01-ssp-en

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


Multiple vulnerabilities in some Huawei Products