PT-2019-17520 · Huawei · Mate Rs+2

Published

2019-11-12

Updated

2019-11-15

CVE-2019-5230

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

Name of the Vulnerable Software and Affected Versions P20 Pro versions prior to 9.1.0.321(C00E320R1P1T8) P20 versions prior to 9.1.0.321(C00E320R1P1T8) Mate RS smartphones versions prior to 9.1.0.321(C00E320R1P1T8)

Description The system has an improper validation issue, where it fails to properly validate certain input models. An attacker could trick a user into installing a malicious application, then craft a malformed model. If the exploit is successful, it could allow the attacker to obtain and tamper with certain output data information.

Recommendations For P20 Pro versions prior to 9.1.0.321(C00E320R1P1T8), update to version 9.1.0.321(C00E320R1P1T8) or later. For P20 versions prior to 9.1.0.321(C00E320R1P1T8), update to version 9.1.0.321(C00E320R1P1T8) or later. For Mate RS smartphones versions prior to 9.1.0.321(C00E320R1P1T8), update to version 9.1.0.321(C00E320R1P1T8) or later.

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

CVE-2019-5230

Affected Products

Mate Rs

P20

P20 Pro

PT-2019-17520 · Huawei · Mate Rs+2

CVE-2019-5230

Weakness Enumeration

Related Identifiers

Affected Products

References · 3