DoS Vulnerability in RTSP Module of Huawei Smartphones
CVE-2019-5284

6.5MEDIUM

Key Information:

Vendor
Huawei
Vendor
CVE Published:
4 June 2019

Summary

A vulnerability exists in the RTSP module of Huawei's Leland-AL00A smartphones prior to version 9.1.0.111(C00E111R2P10T8). This vulnerability can be exploited by remote attackers who trick users into opening a specially crafted RTSP media stream. If successfully exploited, this can lead to abnormal behavior in the affected devices, ultimately resulting in a Denial of Service condition. Users should be aware of this risk and ensure their devices are updated to the latest version to mitigate potential threats. For further details, refer to the security advisories provided by Huawei.

Affected Version(s)

Leland-AL00A Versions earlier than Leland-AL00A 9.1.0.111(C00E111R2P10T8)

References

CVSS V3.1

Score:
6.5
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.