PT-2019-17514 · Huawei · Huawei Smartphone

Publicado

2019-07-17

Atualizado

2020-08-24

CVE-2019-5222

CVSS v3.1

5.5

Média

Vetor

AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Huawei smartphones versions earlier than 9.1.0.216(C00E214R2P1)

Description The issue is related to an information disclosure problem in the Secure Input feature of certain Huawei smartphones. It does not properly limit system privileges, which can be exploited if an attacker tricks a user into installing a malicious application. This could result in information disclosure.

Recommendations For versions earlier than 9.1.0.216(C00E214R2P1), update to version 9.1.0.216(C00E214R2P1) or later to resolve the issue.

Correção

Incorrect Permission

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-732

Identificadores relacionados

CVE-2019-5222

Produtos afetados

Huawei Smartphone

PT-2019-17514 · Huawei · Huawei Smartphone

CVE-2019-5222

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 3