P30 smartphones with versions earlier than ELLE-AL00B 9.1.0.193(C00E190R1P21) have an out of bounds read vulnerability. The system does not properly validate certain length parameter which an application transports to kernel. An attacker tricks the user to install a malicious application, successful exploit could cause out of bounds read and information disclosure.
References
Link | Resource |
---|---|
https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190821-03-smartphone-en | Vendor Advisory |
https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190821-03-smartphone-en | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
History
21 Nov 2024, 04:44
Type | Values Removed | Values Added |
---|---|---|
References | () https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190821-03-smartphone-en - Vendor Advisory |
Information
Published : 2019-11-29 20:15
Updated : 2024-11-21 04:44
NVD link : CVE-2019-5224
Mitre link : CVE-2019-5224
CVE.ORG link : CVE-2019-5224
JSON object : View
Products Affected
huawei
- p30
- p30_firmware
CWE
CWE-125
Out-of-bounds Read