CVE-2019-5306
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
There is a Factory Reset Protection (FRP) bypass security vulnerability in P20 Huawei smart phones versions before Emily-AL00A 9.0.0.167(C00E81R1P21T8). When re-configuring the mobile phone using the FRP function, an attacker can delete the activation lock after a series of operations. As a result, the FRP function is bypassed and the attacker gains access to the smartphone.
Existe una vulnerabilidad de seguridad de derivación de la Protección de restablecimiento de fábrica (FRP) en las versiones de teléfonos P20 de Huawei anterior de Emily-AL00A 9.0.0.167 (C00E81R1P21T8). Cuando se vuelve a configurar el teléfono móvil con la función FRP, un atacante puede eliminar el bloqueo de activación después de una serie de operaciones. Como resultado, la función FRP se omite y el atacante obtiene acceso al teléfono.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2019-01-04 CVE Reserved
- 2019-06-04 CVE Published
- 2023-03-08 EPSS Updated
- 2024-08-04 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
CAPEC
References (1)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190228-01-smartphone-en | 2020-08-24 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Huawei Search vendor "Huawei" | P20 Firmware Search vendor "Huawei" for product "P20 Firmware" | < emily-al00a_9.0.0.167\(c00e81r1p21t8\) Search vendor "Huawei" for product "P20 Firmware" and version " < emily-al00a_9.0.0.167\(c00e81r1p21t8\)" | - |
Affected
| in | Huawei Search vendor "Huawei" | P20 Search vendor "Huawei" for product "P20" | - | - |
Safe
|