CVE-2019-19412: Huawei smart phones have a Factory Reset Protection (FRP) bypass security vulnerability. When re-configuring the mobile phone using the factory reset…

medium4.6CVSS 3.1

AVPACLPRNUINSUCNIHAN

Huawei smart phones have a Factory Reset Protection (FRP) bypass security vulnerability. When re-configuring the mobile phone using the factory reset protection (FRP) function, an attacker login the Talkback mode and can perform some operations to install a third-Party application. Affected products can be found in https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-frp-en.

Affected

108 ranges· showing 25

Vendor	Product	Version range	Fixed in
huawei	alp-al00b	—	—
huawei	alp-al00b_firmware	< 9.0.0.181\(c00e87r2p20t8\)	9.0.0.181\(c00e87r2p20t8\)
huawei	alp-l09	—	—
huawei	alp-l09_firmware	< 9.0.0.201\(c432e4r1p9\)	9.0.0.201\(c432e4r1p9\)
huawei	alp-l29	—	—
huawei	alp-l29	—	—
huawei	alp-l29_firmware	< 9.0.0.177\(c185e2r1p12t8\)	9.0.0.177\(c185e2r1p12t8\)
huawei	alp-l29_firmware	< 9.0.0.195\(c636e2r1p12\)	9.0.0.195\(c636e2r1p12\)
huawei	anne-al00	—	—
huawei	anne-al00_firmware	< 8.0.0.168\(c00\)	8.0.0.168\(c00\)
huawei	berkeley-al20	—	—
huawei	berkeley-al20_firmware	< 9.0.0.156\(c00e156r2p14t8\)	9.0.0.156\(c00e156r2p14t8\)
huawei	berkeley-l09	—	—
huawei	berkeley-l09	—	—
huawei	berkeley-l09_firmware	< 8.0.0.172\(c432\)	8.0.0.172\(c432\)
huawei	berkeley-l09_firmware	< 8.0.0.173\(c636\)	8.0.0.173\(c636\)
huawei	bla-al00b	—	—
huawei	bla-al00b_firmware	< 9.0.0.181\(c00e88r2p15t8\)	9.0.0.181\(c00e88r2p15t8\)
huawei	bla-l09c	—	—
huawei	bla-l09c	—	—
huawei	bla-l09c_firmware	< 9.0.0.177\(c185e2r1p13t8\)	9.0.0.177\(c185e2r1p13t8\)
huawei	bla-l09c_firmware	< 9.0.0.206\(c432e4r1p11\)	9.0.0.206\(c432e4r1p11\)
huawei	bla-l29c	—	—
huawei	bla-l29c	—	—
huawei	bla-l29c	—	—