Information Disclosure Vulnerability on Huawei Mate 9 Pro Smartphones
CVE-2019-5217

4.6MEDIUM

Key Information:

Vendor: Huawei
Status: Mate 9 Pro
Vendor: CVE Published:; 4 June 2019

What is CVE-2019-5217?

An information disclosure vulnerability exists within certain models of Huawei Mate 9 Pro smartphones. Specifically, versions prior to LON-AL00B9.0.1.150 are affected, allowing attackers to potentially access and view photos without the need to unlock the screen. This could expose sensitive user data and raise significant privacy concerns. The vulnerability can be exploited through a sequence of operations, highlighting the importance of timely software updates and security patches.

Affected Version(s)

Mate 9 Pro Versions earlier than LON-AL00B9.0.1.150(C00E61R1P8T8)

References

https://www.huawei.com/en/psirt/security-advisories/huawe...

x_refsource_CONFIRM

CVSS V3.1

Score:

4.6

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Physical

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 4, 2019
Vulnerability Reserved
Jan 4, 2019