Remote Code Execution Vulnerability in Huawei PCManager Software
CVE-2019-5242

7.8HIGH

Key Information:

Vendor: Huawei
Status: Pcmanager
Vendor: CVE Published:; 6 June 2019

Summary

A critical vulnerability exists in Huawei PCManager that allows attackers to execute arbitrary code by convincing users to install a malicious application. Affected versions prior to PCManager 9.0.1.50 are susceptible, potentially enabling unauthorized access to the system's memory and user data.

Affected Version(s)

PCManager versions earlier than PCManager 9.0.1.50

References

http://www.huawei.com/en/psirt/security-advisories/huawei...

x_refsource_CONFIRM

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Jun 6, 2019
Vulnerability Reserved
Jan 4, 2019