Information Disclosure Vulnerability in Huawei Smartphones
CVE-2019-5222
5.5MEDIUM
Summary
An information disclosure vulnerability exists in the Secure Input feature of specific Huawei smartphones. This flaw allows attackers to exploit system privileges by tricking users into installing malicious applications. If successfully exploited, this vulnerability can expose sensitive information, posing significant security risks to users. It is crucial that affected users update their devices to the latest firmware versions to mitigate this issue.
Affected Version(s)
Honor Magic 2 Versions earlier than Tony-AL00B 9.1.0.216(C00E214R2P1)
References
CVSS V3.1
Score:
5.5
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved