CVE-2019-19411
Description
USG9500 with versions of V500R001C30SPC100, V500R001C30SPC200, V500R001C30SPC600, V500R001C60SPC500, V500R005C00SPC100, V500R005C00SPC200 have an information leakage vulnerability. Due to improper processing of the initialization vector used in a specific encryption algorithm, an attacker who gains access to this cryptographic primitive may exploit this vulnerability to cause the value of the confidentiality associated with its use to be diminished.
Risk Information
Base Score
3.7
MODERATE
Vector
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
EPSS Score
Exploitation Probability
2.952
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Vulnerabilities CVE-2019-19411 ,CVE-2021-22309 ,CVE-2021-22360 are affected in usg9500_firmware v500r005c00spc200 | NCM |
| Vulnerabilities CVE-2019-19411 ,CVE-2021-22360 are affected in usg9500_firmware v500r005c00spc100 | NCM |
| Vulnerabilities CVE-2019-19411 ,CVE-2021-22309 ,CVE-2021-22360 are affected in usg9500_firmware v500r001c60spc500 | NCM |
| Vulnerabilities CVE-2019-19411 are affected in usg9500_firmware v500r001c30spc600 | NCM |
| Vulnerabilities CVE-2019-19411 ,CVE-2021-22309 are affected in usg9500_firmware v500r001c30spc200 | NCM |
| Vulnerabilities CVE-2019-19411 are affected in usg9500_firmware v500r001c30spc100 | NCM |
| Improper Initialization Vulnerability (CVE-2019-19411) | NCM |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234