There is insecure algorithm vulnerability in Huawei products. A module uses less random input in a secure mechanism. Attackers can exploit this vulnerability by brute forcing to obtain sensitive message. This can lead to information leak. Affected product versions include:USG9500 versions V500R001C30SPC200, V500R001C60SPC500,V500R005C00SPC200;USG9520 versions V500R005C00;USG9560 versions V500R005C00;USG9580 versions V500R005C00.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NHuawei Usg9500
HWHuaweiwszystkie wersjeHuawei Usg9500 Firmware
OSHuaweiv500r001c30spc200v500r001c60spc500v500r005c00spc200Huawei Usg9520
HWHuaweiwszystkie wersjeHuawei Usg9520 Firmware
OSHuaweiv500r005c00Huawei Usg9560
HWHuaweiwszystkie wersjeHuawei Usg9560 Firmware
OSHuaweiv500r005c00Huawei Usg9580
HWHuaweiwszystkie wersjeHuawei Usg9580 Firmware
OSHuaweiv500r005c00
Related vulnerabilities
Huawei products IPS Module; NGFW Module; NIP6300; NIP6600; NIP6800; Secospace USG6300; Secospace USG6500; Seco...
Buffer overflow in the Application Specific Packet Filtering (ASPF) functionality in the Huawei IPS Module, NG...
There is an out of bounds write vulnerability in some Huawei products. The vulnerability is caused by a functi...
There is a denial of service vulnerability in some huawei products. In specific scenarios, due to the improper...
There is a denial of service vulnerability in some Huawei products. There is no protection against the attack ...