PT-2019-17520 · Huawei · Mate Rs+2
Publicado
2019-11-12
·
Atualizado
2019-11-15
·
CVE-2019-5230
CVSS v3.1
5.5
Média
| Vetor | AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N |
Name of the Vulnerable Software and Affected Versions
P20 Pro versions prior to 9.1.0.321(C00E320R1P1T8)
P20 versions prior to 9.1.0.321(C00E320R1P1T8)
Mate RS smartphones versions prior to 9.1.0.321(C00E320R1P1T8)
Description
The system has an improper validation issue, where it fails to properly validate certain input models. An attacker could trick a user into installing a malicious application, then craft a malformed model. If the exploit is successful, it could allow the attacker to obtain and tamper with certain output data information.
Recommendations
For P20 Pro versions prior to 9.1.0.321(C00E320R1P1T8), update to version 9.1.0.321(C00E320R1P1T8) or later.
For P20 versions prior to 9.1.0.321(C00E320R1P1T8), update to version 9.1.0.321(C00E320R1P1T8) or later.
For Mate RS smartphones versions prior to 9.1.0.321(C00E320R1P1T8), update to version 9.1.0.321(C00E320R1P1T8) or later.
Correção
RCE
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Mate Rs
P20
P20 Pro