Information Leak in Huawei Honor V20 Smartphones
CVE-2019-5301

3.3LOW

Key Information:

Vendor: Huawei
Status: Honor V20
Vendor: CVE Published:; 8 August 2019

Summary

Huawei Honor V20 smartphones prior to version 9.0.1.161(C00E161R2P2) are susceptible to an information leak due to a coding error in layer information processing. This vulnerability allows attackers to potentially deceive users into installing malicious applications, which can lead to unauthorized access to sensitive layer information. Users are advised to update their devices to the latest version to mitigate this risk.

Affected Version(s)

Honor V20 The versions before 9.0.1.161(C00E161R2P2)

References

https://www.huawei.com/en/psirt/security-advisories/huawe...

x_refsource_CONFIRM

CVSS V3.1

Score:

3.3

Severity:

LOW

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Aug 8, 2019
Vulnerability Reserved
Jan 4, 2019