Code Execution Vulnerability in Huawei PCManager
CVE-2019-5238

7.8HIGH

Key Information:

Vendor: Huawei
Status: Pcmanager
Vendor: CVE Published:; 8 August 2019

What is CVE-2019-5238?

Huawei PCManager prior to versions 9.0.1.66 (Oversea) and 9.0.1.70 (China) contains a code execution vulnerability that allows attackers to execute arbitrary code. This can lead to unauthorized access to sensitive information and potential manipulation of system data, posing significant risks to the integrity and confidentiality of affected systems.

Affected Version(s)

PCManager versions before PCManager 9.0.1.66 (Oversea)

PCManager versions before PCManager 9.0.1.70 (China)

References

https://www.huawei.com/en/psirt/security-advisories/huawe...

x_refsource_CONFIRM

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 8, 2019
Vulnerability Reserved
Jan 4, 2019