← voltar
CVE-2019-19411

CVE-2019-19411

EPSS 1.2%
Vexday Risk Score
18Baixo
Decisão SSVC (CISA)
Attend
PoC disponível → acompanhar de perto
Maturidade do exploit
Exploit funcional
Exploit automatizável disponível (Nuclei/Metasploit).
CVSS EPSS 1.2%KEV nãoPoC Nuclei simMetasploit Patch
Ciclo de vida
21 jan 2020Publicada no NVD
Recomendação: Planejar correção próxima — já existe PoC pública.
USG9500 with versions of V500R001C30SPC100, V500R001C30SPC200, V500R001C30SPC600, V500R001C60SPC500, V500R005C00SPC100, V500R005C00SPC200 have an information leakage vulnerability. Due to improper processing of the initialization vector used in a specific encryption algorithm, an attacker who gains access to this cryptographic primitive may exploit this vulnerability to cause the value of the confidentiality associated with its use to be diminished.
Produtos afetados
n/a · USG9500