CVE-2019-5303

Name of the Vulnerable Software and Affected Versions Huawei Mate 20 versions earlier than 9.1.0.131(C00E131R3P1) Huawei Mate 20 Pro versions earlier than 9.1.0.310(C185E10R2P1) Huawei Mate 20 RS versions earlier than 9.1.0.135(C786E133R3P1) Huawei Mate 20 X versions earlier than 9.1.0.135(C00E133R2P1) Huawei P20 versions earlier than 9.1.0.333(C00E333R1P1T8) Huawei P20 Pro versions earlier than 9.1.0.333(C00E333R1P1T8) Huawei P30 versions earlier than 9.1.0.193 Huawei P30 Pro versions earlier than 9.1.0.186(C00E180R2P1) Huawei Y9 2019 versions earlier than 9.1.0.220(C605E3R1P1T8) Huawei nova lite 3 versions earlier than 9.1.0.305(C635E8R2P2) Honor 10 Lite versions earlier than 9.1.0.283(C605E8R2P2) Honor 8X versions earlier than 9.1.0.221(C461E2R1P1T8) Honor View 20 versions earlier than 9.1.0.238(C432E1R3P1) Honor 20 versions earlier than 9.1.0.152(C00E150R5P1) Honor Magic2 versions earlier than 10.0.0.187 Honor V20 versions earlier than 9.1.0.234(C00E234R4P3) ALP-AL00B versions earlier than 9.1.0.333(C00E333R2P1T8) ALP-L09 versions earlier than 9.1.0.300(C432E4R1P9T8) ALP-L29 versions earlier than 9.1.0.315(C636E5R1P13T8) BLA-L29C versions earlier than 9.1.0.321(C636E4R1P14T8) Berkeley-AL20 versions earlier than 9.1.0.333(C00E333R2P1T8) Berkeley-L09 versions earlier than 9.1.0.350(C10E3R1P14T8) Charlotte-L09C versions earlier than 9.1.0.311(C185E4R1P11T8) Charlotte-L29C versions earlier than 9.1.0.325(C185E4R1P11T8) Columbia-AL10B versions earlier than 9.1.0.333(C00E333R1P1T8) Columbia-L29D versions earlier than 9.1.0.350(C461E3R1P11T8) Cornell-AL00A versions earlier than 9.1.0.333(C00E333R1P1T8) Cornell-L29A versions earlier than 9.1.0.328(C185E1R1P9T8) Emily-L09C versions earlier than 9.1.0.336(C605E4R1P12T8) Emily-L29C versions earlier than 9.1.0.311(C605E2R1P12T8) Ever-L29B versions earlier than 9.1.0.311(C185E3R3P1) Jackman-L22 versions earlier than 9.1.0.247(C636E2R4P1T8) Paris-L21B versions earlier than 9.1.0.331(C432E1R1P2T8) Paris-L21MEB versions earlier than 9.1.0.331(C185E4R1P3T8) Paris-L29B versions earlier than 9.1.0.331(C636E1R1P3T8) Sydney-AL00 versions earlier than 9.1.0.212(C00E62R1P7T8) Sydney-L21 versions earlier than 9.1.0.215(C432E1R1P1T8) Sydney-L21BR versions earlier than 9.1.0.213(C185E1R1P2T8) Sydney-L22 versions earlier than 9.1.0.258(C636E1R1P1T8) Sydney-L22BR versions earlier than 9.1.0.258(C636E1R1P1T8) SydneyM-AL00 versions earlier than 9.1.0.228(C00E78R1P7T8) SydneyM-L01 versions earlier than 9.1.0.215(C782E2R1P1T8) SydneyM-L03 versions earlier than 9.1.0.217(C605E1R1P1T8) SydneyM-L21 versions earlier than 9.1.0.221(C461E1R1P1T8) SydneyM-L22 versions earlier than 9.1.0.259(C185E1R1P2T8) SydneyM-L23 versions earlier than 9.1.0.226(C605E2R1P1T8) Yale-L21A versions earlier than 9.1.0.154(C432E2R3P2)

Description The issue exists due to insufficient input validation of two values when parsing TD-SCDMA messages. An attacker may send specially crafted messages from a rogue base station to the affected devices, potentially causing device abnormal behavior.

Recommendations For all affected versions, update to a version later than the specified version to resolve the issue. As a temporary workaround, consider restricting access to the TD-SCDMA parsing functionality until a patch is available. Avoid using the affected devices in areas where rogue base stations may be present until the issue is resolved. At the moment, there is no information about additional mitigation measures.