Vulnerabilities > CVE-2019-5243 - Improper Restriction of Rendered UI Layers or Frames vulnerability in Huawei Hg255S Firmware

CVSS 4.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

LOW

Availability impact

NONE

network

low complexity

huawei

CWE-1021

NVD

Published: 2019-06-10

Updated: 2020-08-24

Summary

There is a Clickjacking vulnerability in Huawei HG255s product. An attacker may trick user to click a link and affect the integrity of a device by exploiting this vulnerability.

Vulnerable Configurations

Part	Description	Count
OS	Huawei Huawei Hg255S Firmware -	1
Hardware	Huawei Huawei Hg255S -	1

Common Weakness Enumeration (CWE)

CWE-1021 - Improper Restriction of Rendered UI Layers or Frames

References

https://support.huawei.com/carrier/navi?lang=en&coltype=software#col=software&detailId=PBI1-22976324&path=PBI1-7275726/PBI1-7275742/PBI1-22892608/PBI1-22903845/PBI1-21219153&lang=en
https://utkusen.com/advisories/CVE-2019-5243.txt