Huawei Data Communication: Information Leakage Vulnerability on Some Huawei Products (huawei-sa-20191211-01-vrp)

There is an information leakage vulnerability on some Huawei products.

There is an information leakage vulnerability on some Huawei products. An attacker with low permissions can view some high-privilege information by running specific commands.Successful exploit could cause an information disclosure condition. (Vulnerability ID: HWPSIRT-2019-04080)This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2019-5259.Huawei has released software updates to fix this vulnerability. This advisory is available in the linked references.

AR120-S versions V200R005C20 V200R005C32 V200R006C10 V200R007C00 V200R008C50 V200R009C00 V200R010C00 AR1200 versions V200R005C20 V200R005C32 V200R006C10 V200R007C00 V200R008C50 V200R009C00 AR1200-S versions V200R005C20 V200R005C32 V200R006C10 V200R007C00 V200R008C50 V200R009C00 AR150 versions V200R005C20 V200R005C32 V200R006C10 V200R007C00 V200R008C50 V200R009C00 AR150-S versions V200R005C00 V200R005C32 V200R006C10 V200R007C00 V200R008C50 V200R009C00 AR160 versions V200R005C20 V200R005C32 V200R006C10 V200R007C00 V200R008C50 V200R009C00 AR200 versions V200R005C20 V200R005C32 V200R006C10 V200R007C00 V200R008C50 V200R009C00 AR200-S versions V200R005C20 V200R005C32 V200R006C10 V200R007C00 V200R008C50 V200R009C00 AR2200 versions V200R005C20 V200R005C32 V200R006C10 V200R007C00 V200R008C50 V200R009C00 AR2200-S versions V200R005C20 V200R005C32 V200R006C10 V200R007C00 V200R008C50 V200R009C00 AR3200 versions V200R005C20 V200R005C32 V200R006C10 V200R007C00 V200R008C50 V200R009C00 AR3600 versions V200R006C10 V200R007C00 V200R008C50 V200R009C00

Checks if a vulnerable version is present on the target host.

See the referenced vendor advisory for a solution.