CVE-2019-19411

LOW NUCLEI

USG9500 <V500R001C30SPC100-V500R005C00SPC200 - Info Disclosure

Title source: llm

Description

USG9500 with versions of V500R001C30SPC100, V500R001C30SPC200, V500R001C30SPC600, V500R001C60SPC500, V500R005C00SPC100, V500R005C00SPC200 have an information leakage vulnerability. Due to improper processing of the initialization vector used in a specific encryption algorithm, an attacker who gains access to this cryptographic primitive may exploit this vulnerability to cause the value of the confidentiality associated with its use to be diminished.

Nuclei Templates (1)

Huawei Firewall - Local File Inclusion

LOWVERIFIEDby taielab

Shodan: title:"HUAWEI"

References (1)

[Vendor Advisory] https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-firewall-en

Scores

CVSS v3 3.7

EPSS 0.0295

EPSS Percentile 86.5%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

Details

CWE

CWE-665

Status published

Products (6)

huawei/usg9500_firmware v500r001c30spc100

huawei/usg9500_firmware v500r001c30spc200

huawei/usg9500_firmware v500r001c30spc600

huawei/usg9500_firmware v500r001c60spc500

huawei/usg9500_firmware v500r005c00spc100

huawei/usg9500_firmware v500r005c00spc200

Published Jan 21, 2020

Tracked Since Feb 18, 2026