CVE-2019-5254

Q: What is the severity of CVE-2019-5254?

CVE-2019-5254 has a CVSS score of 8.6 (HIGH). This CVE describes an out-of-bounds read vulnerability in multiple Huawei networking products. An authenticated attacker on the internal network can send crafted messages to cause board abnormalities. Affected systems include Huawei firewalls, switches, and security modules.

8.6 HIGH

Denial of Service

📋 TL;DR

This CVE describes an out-of-bounds read vulnerability in multiple Huawei networking products. An authenticated attacker on the internal network can send crafted messages to cause board abnormalities. Affected systems include Huawei firewalls, switches, and security modules.

💻 Affected Systems

Products:

AP2000
IPS Module
NGFW Module
NIP6300
NIP6600
NIP6800
S5700
SVN5600
SVN5800
SVN5800-C
SeMG9811
Secospace AntiDDoS8000
Secospace USG6300
Secospace USG6500
Secospace USG6600
USG6000V
eSpace U1981

Versions: Specific affected versions not detailed in advisory

Operating Systems: Huawei proprietary OS

Default Config Vulnerable: ⚠️ Yes

Notes: All listed products in default configurations are vulnerable. Requires attacker to have login access to the board.

📦 What is this software?

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete board failure leading to denial of service for critical network infrastructure

🟠

Likely Case

Service disruption or instability of affected networking devices

🟢

If Mitigated

Minimal impact with proper network segmentation and access controls

🌐 Internet-Facing: LOW - Exploitation requires internal network access

🏢 Internal Only: HIGH - Internal attackers can exploit this to disrupt critical infrastructure

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: MEDIUM

Exploitation requires authenticated access and knowledge of inter-process messaging protocols

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Check Huawei security advisory for specific fixed versions

Vendor Advisory: https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191211-01-ssp-en

Restart Required: Yes

Instructions:

1. Check Huawei security advisory for specific patch versions. 2. Download appropriate firmware updates from Huawei support portal. 3. Apply patches following Huawei's upgrade procedures. 4. Reboot affected devices as required.

🔧 Temporary Workarounds

Network Segmentation

all

Restrict access to internal management interfaces

Access Control Hardening

all

Implement strict authentication and authorization controls for device management

🧯 If You Can't Patch

Implement strict network segmentation to isolate affected devices
Enforce least privilege access controls and monitor for suspicious internal traffic

🔍 How to Verify

Check if Vulnerable:

Check device model and firmware version against Huawei security advisory

Check Version:

display version (Huawei CLI command)

Verify Fix Applied:

Verify firmware version has been updated to patched version specified in advisory

📡 Detection & Monitoring

Log Indicators:

Unexpected board restarts
Abnormal process crashes
Authentication logs showing suspicious internal access

Network Indicators:

Unusual inter-process communication patterns
Abnormal traffic from internal management interfaces

SIEM Query:

source="huawei-firewall" AND (event_type="system_reboot" OR event_type="process_crash")

📊 Metadata

CVE ID: CVE-2019-5254

CVSS v3 Score: 8.6 (HIGH)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

CWE: CWE-125

Published: December 13, 2019

Last Updated: November 21, 2024

🔗 References

https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191211-01-ssp-en Vendor Advisory
https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191211-01-ssp-en Vendor Advisory

📋 TL;DR

💻 Affected Systems

📦 What is this software?

Ap2000 Firmware by Huawei

Ap2000 Firmware by Huawei

Ap2000 Firmware by Huawei

Ap2000 Firmware by Huawei

Ap2000 Firmware by Huawei

Ap2000 Firmware by Huawei

Ap2000 Firmware by Huawei

Ap2000 Firmware by Huawei

Espace U1981 Firmware by Huawei

Ips Firmware by Huawei

Ips Firmware by Huawei

Ips Firmware by Huawei

Ips Firmware by Huawei

Ips Firmware by Huawei

Ips Firmware by Huawei

Ips Firmware by Huawei

Ips Firmware by Huawei

Ips Firmware by Huawei

Ips Firmware by Huawei

Ips Firmware by Huawei

Ips Firmware by Huawei

Ips Firmware by Huawei

Ips Firmware by Huawei

Ips Firmware by Huawei

Ips Firmware by Huawei

Ips Firmware by Huawei

Ips Firmware by Huawei

Ips Firmware by Huawei

Ips Firmware by Huawei

Ips Firmware by Huawei

Ips Firmware by Huawei

Ngfw Firmware by Huawei

Ngfw Firmware by Huawei

Ngfw Firmware by Huawei

Ngfw Firmware by Huawei

Ngfw Firmware by Huawei

Ngfw Firmware by Huawei

Ngfw Firmware by Huawei

Ngfw Firmware by Huawei

Ngfw Firmware by Huawei

Ngfw Firmware by Huawei

Ngfw Firmware by Huawei

Ngfw Firmware by Huawei

Ngfw Firmware by Huawei

Ngfw Firmware by Huawei

Ngfw Firmware by Huawei

Ngfw Firmware by Huawei

Ngfw Firmware by Huawei

Ngfw Firmware by Huawei

Ngfw Firmware by Huawei

Ngfw Firmware by Huawei

Ngfw Firmware by Huawei

Ngfw Firmware by Huawei

Ngfw Firmware by Huawei

Ngfw Firmware by Huawei

Nip6300 Firmware by Huawei

Nip6300 Firmware by Huawei

Nip6300 Firmware by Huawei

Nip6300 Firmware by Huawei

Nip6300 Firmware by Huawei

Nip6300 Firmware by Huawei

Nip6300 Firmware by Huawei

Nip6300 Firmware by Huawei

Nip6300 Firmware by Huawei

Nip6300 Firmware by Huawei

Nip6300 Firmware by Huawei

Nip6300 Firmware by Huawei

Nip6300 Firmware by Huawei

Nip6300 Firmware by Huawei

Nip6300 Firmware by Huawei

Nip6300 Firmware by Huawei

Nip6300 Firmware by Huawei

Nip6300 Firmware by Huawei

Nip6300 Firmware by Huawei

Nip6300 Firmware by Huawei

Nip6300 Firmware by Huawei

Nip6300 Firmware by Huawei