P30, P30 Pro, Mate 20 smartphones with software of versions earlier than ELLE-AL00B 9.1.0.193(C00E190R2P1), versions earlier than VOGUE-AL00A 9.1.0.193(C00E190R2P1), versions earlier than Hima-AL00B 9.1.0.135(C00E133R2P1) and HiSuite with versions earlier than HiSuite 9.1.0.305 have a version downgrade vulnerability. The device and HiSuite software do not validate the upgrade package sufficiently, so that the system of smartphone can be downgraded to an older version.
References
Link | Resource |
---|---|
https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190904-01-smartphone-en | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
AND |
|
History
No history.
Information
Published : 2019-11-29 20:15
Updated : 2024-02-28 17:28
NVD link : CVE-2019-5227
Mitre link : CVE-2019-5227
CVE.ORG link : CVE-2019-5227
JSON object : View
Products Affected
huawei
- mate_20_firmware
- p30_pro_firmware
- mate_20
- p30_pro
- p30
- hisuite
- p30_firmware
- hisuite_firmware
CWE
CWE-346
Origin Validation Error