Information Leak in Huawei Honor V20 Smartphones
CVE-2019-5301

3.3LOW

Key Information:

Vendor
Huawei
Status
Vendor
CVE Published:
8 August 2019

Summary

Huawei Honor V20 smartphones prior to version 9.0.1.161(C00E161R2P2) are susceptible to an information leak due to a coding error in layer information processing. This vulnerability allows attackers to potentially deceive users into installing malicious applications, which can lead to unauthorized access to sensitive layer information. Users are advised to update their devices to the latest version to mitigate this risk.

Affected Version(s)

Honor V20 The versions before 9.0.1.161(C00E161R2P2)

References

CVSS V3.1

Score:
3.3
Severity:
LOW
Confidentiality:
Low
Integrity:
None
Availability:
Low
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.