PT-2019-5376 · Huawei · Honor 8+2
Publicado
2019-10-30
·
Atualizado
2020-08-24
·
CVE-2019-5292
CVSS v3.1
3.3
Baixa
| Vetor | AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Honor 10 Lite versions prior to 9.1.0.217(C00E215R3P1)
Honor 8A versions prior to 9.1.0.205(C00E97R1P9)
Huawei Y6 versions prior to 9.1.0.205(C00E97R2P2)
Description
The issue is related to improper function error records of some module, which may allow an attacker with access permission to exploit the vulnerability and obtain some information. The vulnerability in the software of Huawei mobile phones is associated with errors in security mechanisms, potentially allowing an attacker to gain unauthorized access to protected data.
Recommendations
For Honor 10 Lite versions prior to 9.1.0.217(C00E215R3P1), update to version 9.1.0.217(C00E215R3P1) or later.
For Honor 8A versions prior to 9.1.0.205(C00E97R1P9), update to version 9.1.0.205(C00E97R1P9) or later.
For Huawei Y6 versions prior to 9.1.0.205(C00E97R2P2), update to version 9.1.0.205(C00E97R2P2) or later.
Correção
Information Disclosure
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Honor 10 Lite
Honor 8
Huawei Y6