CVE-2019-5244
 
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
Mate 9 Pro Huawei smartphones earlier than LON-L29C 8.0.0.361(C636) versions have an information leak vulnerability due to the lack of input validation. An attacker tricks the user who has root privilege to install an application on the smart phone, and the application can read some process information, which may cause sensitive information leak.
Los teléfonos Mate 9 Pro Huawei anteriores a LON-L29C 8.0.0.361 (C636) tienen una vulnerabilidad de carencia de información debido a la filtración de validación de entrada. Un atacante engaña al usuario que tiene privilegios de root para instalar una aplicación en el teléfono, y la aplicación puede leer cierta información de proceso, lo que puede causar una carencia de información confidencial.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2019-01-04 CVE Reserved
- 2019-06-04 CVE Published
- 2023-03-08 EPSS Updated
- 2024-08-04 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-20: Improper Input Validation
CAPEC
References (1)
URL | Tag | Source |
---|
URL | Date | SRC |
---|
URL | Date | SRC |
---|
URL | Date | SRC |
---|---|---|
https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190220-01-informationleak-en | 2020-08-24 |
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Huawei Search vendor "Huawei" | Mate 9 Pro Fimware Search vendor "Huawei" for product "Mate 9 Pro Fimware" | < lon-l29c_8.0.0.361\(c636\) Search vendor "Huawei" for product "Mate 9 Pro Fimware" and version " < lon-l29c_8.0.0.361\(c636\)" | - |
Affected
| in | Huawei Search vendor "Huawei" | Mate 9 Pro Search vendor "Huawei" for product "Mate 9 Pro" | - | - |
Safe
|