CVE-2019-19411
CVE-2019-19411
Vexday Risk Score
18Bajo
Decisión SSVC (CISA)
Attend
PoC disponible → seguir de cerca
Madurez del exploit
Exploit funcional
Exploit automatizable disponible (Nuclei/Metasploit).
CVSS —EPSS 1.2%KEV nãoPoC —Nuclei simMetasploit —Patch —
Ciclo de vida
21 ene 2020Publicada en NVD
Recomendación: Planificar corrección próxima — ya existe PoC pública.
USG9500 with versions of V500R001C30SPC100, V500R001C30SPC200, V500R001C30SPC600, V500R001C60SPC500, V500R005C00SPC100, V500R005C00SPC200 have an information leakage vulnerability. Due to improper processing of the initialization vector used in a specific encryption algorithm, an attacker who gains access to this cryptographic primitive may exploit this vulnerability to cause the value of the confidentiality associated with its use to be diminished.
Productos afectados
n/a · USG9500