Unrated severityNVD Advisory· Published Jul 8, 2020· Updated Aug 5, 2024

CVE-2019-19417

Description

The SIP module of some Huawei products have a denial of service (DoS) vulnerability. A remote attacker could exploit these three vulnerabilities by sending the specially crafted messages to the affected device. Due to the insufficient verification of the packets, successful exploit could allow the attacker to cause buffer overflow and dead loop, leading to DoS condition. Affected products can be found in https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-sip-en.

Affected products

Huawei/AR1200cpe-rescue2 versions
V200R006C10+ 1 more
- (no CPE)range: V200R006C10
- (no CPE)range: V200R006C10
Huawei/AR120-Scpe-rescue
Range: V200R006C10
Huawei/AR150v5
Range: V200R006C10
Huawei/AR150-Sv5
Range: V200R006C10SPC300
Huawei/AR160v5
Range: V200R006C10
Huawei/AR200cpe-rescue2 versions
V200R006C10+ 1 more
- (no CPE)range: V200R006C10
- (no CPE)range: V200R006C10
Huawei/AR2200cpe-rescue2 versions
V200R006C10+ 1 more
- (no CPE)range: V200R006C10
- (no CPE)range: V200R006C10
Huawei/AR3200cpe-rescue
Range: V200R006C10
Huawei/AR3600v5
Range: V200R006C10
Huawei/AR510v5
Range: V200R006C10
Huawei/DP300cpe-rescue
Range: V500R002C00
Huawei/Espace U1910 Firmwarecpe-rescue
Range: V100R001C20SPC300
Huawei/Espace U1911 Firmwarecpe-rescue
Range: V100R001C20SPC300
Huawei/Espace U1930 Firmwarecpe-rescue
Range: V100R001C20SPC300
Huawei/Espace U1960 Firmwarecpe-rescue
Range: V100R001C01SPC500
Huawei/Espace U1980 Firmwarecpe-rescue
Range: V100R001C01SPC500T
Huawei/Espace U1981 Firmwarecpe-rescue
Range: V100R001C20SPC300
Huawei/Ips Module Firmwarecpe-rescue
Range: V100R001C10
Huawei/Netengine16ex Firmwarecpe-rescue
Range: V200R006C10
Huawei/Ngfw Module Firmwarecpe-rescue
Range: V100R001C10
Huawei/NIP6300v5
Range: V500R001C00
Huawei/NIP6600v5
Range: V500R001C00
Huawei/NIP6800v5
Range: V500R001C30
Huawei/RSE6500v5
Range: V500R002C00
Huawei/Secospace Usg6300 Firmwarecpe-rescue
Range: V100R001C10
Huawei/Secospace Usg6500 Firmwarecpe-rescue
Range: V100R001C10
Huawei/Secospace Usg6600 Firmwarecpe-rescue
Range: V100R001C00
Huawei/SeMG9811v5
Range: V300R001C01SPC500
Huawei/Smc2.0cpe-rescue
Range: V100R003C00SPC200T
Huawei/SoftCocpe-rescue
Range: V200R001C01SPC300
Huawei/SRG1300v5
Range: V200R006C10
Huawei/SRG2300v5
Range: V200R006C10
Huawei/SRG3300v5
Range: V200R006C10
Huawei/SVN5600v5
Range: V200R003C00
Huawei/SVN5800v5
Range: V200R003C00
Huawei/SVN5800-Cv5
Range: V200R003C00
Huawei/Te30cpe-rescue
Range: V100R001C02SPC100
Huawei/Te40cpe-rescue
Range: V500R002C00SPC600
Huawei/Te50cpe-rescue
Range: V500R002C00SPC600
Huawei/Te60cpe-rescue
Range: V100R001C01SPC100
Huawei/TP3206cpe-rescue
Range: V100R002C00
Huawei/USG9500cpe-rescue
Range: V300R001C01
Huawei/USG9520cpe-rescue
Range: V300R001C01SPC800PWE
Huawei/USG9560cpe-rescue
Range: V300R001C20SPC300
Huawei/ViewPoint 8660v5
Range: V100R008C03B013SP02
Huawei/Viewpoint 9030 Firmwarecpe-rescue
Range: V100R011C02SPC100
Huawei/VP9660v5
Range: V200R001C02SPC100

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-sip-enmitrex_refsource_CONFIRM

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000