CVE-2019-5264

4.6MEDIUM

Key Information:

Vendor: Huawei
Status: Mate 10;mate 10 Pro;honor V10;changxiang 7s;p-smart;changxiang 8 Plus;y9 2018;honor 9 Lite;honor 9i;mate 9
Vendor: CVE Published:; 13 December 2019

Summary

There is an information disclosure vulnerability in certain Huawei smartphones (Mate 10;Mate 10 Pro;Honor V10;Changxiang 7S;P-smart;Changxiang 8 Plus;Y9 2018;Honor 9 Lite;Honor 9i;Mate 9). The software does not properly handle certain information of applications locked by applock in a rare condition. Successful exploit could cause information disclosure.

Affected Version(s)

Mate 10;Mate 10 Pro;Honor V10;Changxiang 7S;P-smart;Changxiang 8 Plus;Y9 2018;Honor 9 Lite;Honor 9i;Mate 9 Versions earlier than 9.0.0.167(C00E85R2P20T8)

Mate 10;Mate 10 Pro;Honor V10;Changxiang 7S;P-smart;Changxiang 8 Plus;Y9 2018;Honor 9 Lite;Honor 9i;Mate 9 Versions earlier than 9.0.0.159(C432E4R1P9T8)

Mate 10;Mate 10 Pro;Honor V10;Changxiang 7S;P-smart;Changxiang 8 Plus;Y9 2018;Honor 9 Lite;Honor 9i;Mate 9 Versions earlier than 9.0.0.177(C185E2R1P12T8)

References

https://www.huawei.com/en/psirt/security-advisories/huawe...

x_refsource_MISC

CVSS V3.1

Score:

4.6

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Physical

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Dec 13, 2019
Vulnerability Reserved
Jan 4, 2019