CVE-2019-5236

CWE-4154 documents4 sources
Severity
6.3MEDIUM
EPSS
0.1%
top 67.17%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Huawei Emily-l29cHuawei Emily-l29c Firmware
Timeline
PublishedAug 8
Latest updateMay 24

Description

Huawei smart phones Emily-L29C with versions of 8.1.0.132a(C432), 8.1.0.135(C782), 8.1.0.154(C10), 8.1.0.154(C461), 8.1.0.154(C635), 8.1.0.156(C185), 8.1.0.156(C605), 8.1.0.159(C636) have a double free vulnerability. An attacker can trick a user to click a URL to exploit this vulnerability. Successful exploitation may cause the affected phone abnormal.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:LExploitability: 2.8 | Impact: 3.4

Affected Packages2 packages

CVEListV5huawei/emily-l29c8 versions+7
NVDhuawei/emily-l29c_firmware8 versions+7

🔴Vulnerability Details

2
GHSA
GHSA-34h4-h6v3-w52h: Huawei smart phones Emily-L29C with versions of 82022-05-24
CVEList
CVE-2019-5236: Huawei smart phones Emily-L29C with versions of 82019-08-08

💥Exploits & PoCs

1
Exploit-DB
Zeeways Jobsite CMS - 'id' SQL Injection2019-03-25
CVE-2019-5236 (MEDIUM CVSS 6.3) | Huawei smart phones Emily-L29C with | cvebase.io