CVE-2019-5264

3 documents3 sources
Severity
4.6MEDIUM
EPSS
0.1%
top 80.23%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
10
Huawei Changxiang 7S FirmwareHuawei Changxiang 8 Plus FirmwareHuawei Honor 9 Lite Firmware+7 more
Timeline
PublishedDec 13
Latest updateMay 24

Description

There is an information disclosure vulnerability in certain Huawei smartphones (Mate 10;Mate 10 Pro;Honor V10;Changxiang 7S;P-smart;Changxiang 8 Plus;Y9 2018;Honor 9 Lite;Honor 9i;Mate 9). The software does not properly handle certain information of applications locked by applock in a rare condition. Successful exploit could cause information disclosure.

CVSS vector

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 0.9 | Impact: 3.6

Affected Packages10 packages

NVDhuawei/honor_9_lite_firmware< 9.1.0.113\(c00e111r2p10t8\)+3
NVDhuawei/mate_9_firmware< 9.0.1.158\(c432e6r1p8t8\)+1
NVDhuawei/mate_10_firmware< 9.0.0.167\(c00e85r2p20t8\)+3
NVDhuawei/honor_9i_firmware< 9.1.0.121\(c432e4r1p3t8\)+1
NVDhuawei/honor_v10_firmware< 9.0.0.156\(c00e156r2p14t8\)+2

🔴Vulnerability Details

2
GHSA
GHSA-22pm-jxcw-xcx5: There is an information disclosure vulnerability in certain Huawei smartphones (Mate 10;Mate 10 Pro;Honor V10;Changxiang 7S;P-smart;Changxiang 8 Plus;2022-05-24
CVEList
CVE-2019-5264: There is an information disclosure vulnerability in certain Huawei smartphones (Mate 10;Mate 10 Pro;Honor V10;Changxiang 7S;P-smart;Changxiang 8 Plus;2019-12-13
CVE-2019-5264 (MEDIUM CVSS 4.6) | There is an information disclosure | cvebase.io