CVE-2019-5225
published 2019-11-29CVE-2019-5225: P30, Mate 20, P30 Pro smartphones with software of versions earlier than ELLE-AL00B 9.1.0.193(C00E190R1P21), versions earlier than Hima-AL00B…
high7.8CVSS 3.1
AVLACLPRNUIRSUCHIHAH
P30, Mate 20, P30 Pro smartphones with software of versions earlier than ELLE-AL00B 9.1.0.193(C00E190R1P21), versions earlier than Hima-AL00B 9.1.0.135(C00E200R2P1), versions earlier than VOGUE-AL00A 9.1.0.193(C00E190R1P12) have a buffer overflow vulnerability on several , the system does not properly validate certain length parameter which an application transports to kernel. An attacker tricks the user to install a malicious application, successful exploit could cause malicious code execution.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| huawei | mate_20_firmware | < hima-al00b_9.1.0.135\(c00e200r2p1\) | hima-al00b_9.1.0.135\(c00e200r2p1\) |
| huawei | p30_firmware | < elle-al00b_9.1.0.193\(c00e190r1p21\) | elle-al00b_9.1.0.193\(c00e190r1p21\) |
| huawei | p30_pro_firmware | < vogue-al00a_9.1.0.193\(c00e190r1p12\) | vogue-al00a_9.1.0.193\(c00e190r1p12\) |