CVE-2019-5212
published 2019-11-29CVE-2019-5212: There is an improper access control vulnerability in Huawei Share. The software does not properly restrict access to certain file from certain application. An…
medium5.5CVSS 3.1
AVLACLPRNUIRSUCHINAN
There is an improper access control vulnerability in Huawei Share. The software does not properly restrict access to certain file from certain application. An attacker tricks the user into installing a malicious application then establishing a connect to the attacker through Huawei Share, successful exploit could cause information disclosure.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| huawei | p20_firmware | < emily-l29c_9.1.0.311\(c10e2r1p13t8\) | emily-l29c_9.1.0.311\(c10e2r1p13t8\) |
| huawei | p20_firmware | < emily-l29c_9.1.0.311\(c461e2r1p11t8\) | emily-l29c_9.1.0.311\(c461e2r1p11t8\) |
| huawei | p20_firmware | < emily-l29c_9.1.0.311\(c605e2r1p12t8\) | emily-l29c_9.1.0.311\(c605e2r1p12t8\) |
| huawei | p20_firmware | < emily-l29c_9.1.0.311\(c432e7r1p11t8\) | emily-l29c_9.1.0.311\(c432e7r1p11t8\) |
| huawei | p20_firmware | — | — |