DoS Vulnerability in RTSP Module of Huawei Smartphones
CVE-2019-5284
6.5MEDIUM
Summary
A vulnerability exists in the RTSP module of Huawei's Leland-AL00A smartphones prior to version 9.1.0.111(C00E111R2P10T8). This vulnerability can be exploited by remote attackers who trick users into opening a specially crafted RTSP media stream. If successfully exploited, this can lead to abnormal behavior in the affected devices, ultimately resulting in a Denial of Service condition. Users should be aware of this risk and ensure their devices are updated to the latest version to mitigate potential threats. For further details, refer to the security advisories provided by Huawei.
Affected Version(s)
Leland-AL00A Versions earlier than Leland-AL00A 9.1.0.111(C00E111R2P10T8)
References
CVSS V3.1
Score:
6.5
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved