What is CVE-2019-5268?

CVE-2019-5268 is a high-severity vulnerability in Huawei Cd10-10, classified under Improper Input Validation. CVSS score: 8.1/10. Published 2019-11-29.

How severe is CVE-2019-5268?

High severity. CVSS v3 base score is 8.1 out of 10.

Improper input validation in Huawei Cd10-10

CVE-2019-5268

Some Huawei home routers have an input validation vulnerability. Due to input parameter is not correctly verified, an attacker can exploit this vulnerability by sending special constructed packets to obtain files in the device and upload f…

Vulnerability class: Drupalgeddon 2 (CVE-2018-7600)

EPSS: 0.004 (29.9th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 8.1 (High). Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N.

Affected products

Huawei Cd10-10
Huawei Cd10-10_firmware
Huawei Cd16-10
Huawei Cd16-10_firmware
Huawei Cd17-10
Huawei Cd17-10_firmware
Huawei Cd18-10
Huawei Cd18-10_firmware
Huawei Hirouter-cd15-10
Huawei Hirouter-cd15-10_firmware

Weakness classification (CWE)

CWE-20 — Improper Input Validation

References

psirt@huawei.com (x_refsource_CONFIRM, Vendor Advisory)

Frequently asked questions

What is CVE-2019-5268?: CVE-2019-5268 is a high-severity vulnerability in Huawei Cd10-10, classified under Improper Input Validation. CVSS score: 8.1/10. Published 2019-11-29.
How severe is CVE-2019-5268?: High severity. CVSS v3 base score is 8.1 out of 10.