PT-2019-17514 · Huawei · Huawei Smartphone

Published

2019-07-17

Updated

2020-08-24

CVE-2019-5222

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Huawei smartphones versions earlier than 9.1.0.216(C00E214R2P1)

Description The issue is related to an information disclosure problem in the Secure Input feature of certain Huawei smartphones. It does not properly limit system privileges, which can be exploited if an attacker tricks a user into installing a malicious application. This could result in information disclosure.

Recommendations For versions earlier than 9.1.0.216(C00E214R2P1), update to version 9.1.0.216(C00E214R2P1) or later to resolve the issue.

Fix

Incorrect Permission

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-732

Related Identifiers

CVE-2019-5222

Affected Products

Huawei Smartphone

PT-2019-17514 · Huawei · Huawei Smartphone

CVE-2019-5222

Weakness Enumeration

Related Identifiers

Affected Products

References · 3