CVE-2019-5301

3.3LOW

Key Information:

Vendor: Huawei
Status: Honor V20
Vendor: CVE Published:; 8 August 2019

Summary

Huawei smart phones Honor V20 with the versions before 9.0.1.161(C00E161R2P2) have an information leak vulnerability. An attacker may trick a user into installing a malicious application. Due to coding error during layer information processing, attackers can exploit this vulnerability to obtain some layer information.

Affected Version(s)

Honor V20 The versions before 9.0.1.161(C00E161R2P2)

References

https://www.huawei.com/en/psirt/security-advisories/huawe...

x_refsource_CONFIRM

CVSS V3.1

Score:

3.3

Severity:

LOW

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Aug 8, 2019
Vulnerability Reserved
Jan 4, 2019