CVE-2019-5228

Name of the Vulnerable Software and Affected Versions P30 versions earlier than ELLE-AL00B 9.1.0.193(C00E190R1P21) P30 Pro versions earlier than VOGUE-AL00A 9.1.0.193(C00E190R1P12) Honor V20 versions earlier than Princeton-AL10B 9.1.0.233(C00E233R4P3)

Description The issue is related to a race condition in a detection module, where the system fails to properly lock certain functions when called by multiple processes, potentially leading to out-of-bounds write. An attacker could exploit this by tricking a user into installing a malicious application, which could result in malicious code execution.

Recommendations For P30 versions earlier than ELLE-AL00B 9.1.0.193(C00E190R1P21), update to version ELLE-AL00B 9.1.0.193(C00E190R1P21) or later. For P30 Pro versions earlier than VOGUE-AL00A 9.1.0.193(C00E190R1P12), update to version VOGUE-AL00A 9.1.0.193(C00E190R1P12) or later. For Honor V20 versions earlier than Princeton-AL10B 9.1.0.233(C00E233R4P3), update to version Princeton-AL10B 9.1.0.233(C00E233R4P3) or later.