Information Disclosure Vulnerability in Huawei Smartphones
CVE-2019-5264

4.6MEDIUM

Key Information:

Vendor: Huawei
Status: Mate 10;mate 10 Pro;honor V10;changxiang 7s;p-smart;changxiang 8 Plus;y9 2018;honor 9 Lite;honor 9i;mate 9
Vendor: CVE Published:; 13 December 2019

What is CVE-2019-5264?

An information disclosure vulnerability exists in several Huawei smartphone models that do not adequately protect application data under specific conditions. When an applock feature is used, the software can mishandle sensitive data, leading to potential exposure of personal information. This vulnerability affects popular models like Mate 10, Honor V10, and several others, emphasizing the need for users to remain vigilant about their device security.

Affected Version(s)

Mate 10;Mate 10 Pro;Honor V10;Changxiang 7S;P-smart;Changxiang 8 Plus;Y9 2018;Honor 9 Lite;Honor 9i;Mate 9 Versions earlier than 9.0.0.167(C00E85R2P20T8)

Mate 10;Mate 10 Pro;Honor V10;Changxiang 7S;P-smart;Changxiang 8 Plus;Y9 2018;Honor 9 Lite;Honor 9i;Mate 9 Versions earlier than 9.0.0.159(C432E4R1P9T8)

Mate 10;Mate 10 Pro;Honor V10;Changxiang 7S;P-smart;Changxiang 8 Plus;Y9 2018;Honor 9 Lite;Honor 9i;Mate 9 Versions earlier than 9.0.0.177(C185E2R1P12T8)

References

https://www.huawei.com/en/psirt/security-advisories/huawe...

x_refsource_MISC

CVSS V3.1

Score:

4.6

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Physical

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 13, 2019
Vulnerability Reserved
Jan 4, 2019