Information Disclosure Vulnerability on Huawei Mate 9 Pro Smartphones
CVE-2019-5217

4.6MEDIUM

Key Information:

Vendor
Huawei
Vendor
CVE Published:
4 June 2019

Summary

An information disclosure vulnerability exists within certain models of Huawei Mate 9 Pro smartphones. Specifically, versions prior to LON-AL00B9.0.1.150 are affected, allowing attackers to potentially access and view photos without the need to unlock the screen. This could expose sensitive user data and raise significant privacy concerns. The vulnerability can be exploited through a sequence of operations, highlighting the importance of timely software updates and security patches.

Affected Version(s)

Mate 9 Pro Versions earlier than LON-AL00B9.0.1.150(C00E61R1P8T8)

References

CVSS V3.1

Score:
4.6
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Physical
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.