CVE-2019-5211

Published: Nov 29, 2019 Last Modified: Nov 21, 2024 EU-VD ID: EUVD-2019-14816 Aliases: GSD-2019-5211

ExploitDB:

Other exploit source:

Google Dorks:

MEDIUM 5,7

Source: [email protected]

Attack Vector: adjacent_network

Attack Complexity: low

Privileges Required: none

User Interaction: required

Scope: unchanged

Confidentiality: none

Integrity: high

Availability: none

MEDIUM 4,3

Source: [email protected]

Access Vector: adjacent_network

Access Complexity: medium

Authentication: none

Confidentiality: none

Integrity: partial

Availability: partial

Description

AI Translation Available

The Huawei Share function of P20 phones with versions earlier than Emily-L29C 9.1.0.311 has an improper file management vulnerability. The attacker tricks the victim to perform certain operations on the mobile phone during file transfer. Because the file is not properly processed, successfully exploit may cause some files on the victim's mobile phone are deleted.

EPSS (Exploit Prediction Scoring System)

Trend Analysis

EPSS (Exploit Prediction Scoring System)

Prevede la probabilità di sfruttamento basata su intelligence sulle minacce e sulle caratteristiche della vulnerabilità.

EPSS Score

0,0008

Percentile

0,2th

Updated

EPSS Score Trend (Last 90 Days)

Operating System

P20 Firmware by Huawei

Product Information

Vendor Huawei

Product P20 Firmware

Version Range Affected

To emily-l29c_9.1.0.311\(c10e2r1p13t8\) (exclusive)

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:huawei:p20_firmware:*:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

P20 Firmware by Huawei

Product Information

Vendor Huawei

Product P20 Firmware

Version Range Affected

To emily-l29c_9.1.0.311\(c432e7r1p11t8\) (exclusive)

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:huawei:p20_firmware:*:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

P20 Firmware by Huawei

Product Information

Vendor Huawei

Product P20 Firmware

Version Range Affected

To emily-l29c_9.1.0.311\(c605e2r1p12t8\) (exclusive)

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:huawei:p20_firmware:*:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

P20 Firmware by Huawei

Product Information

Vendor Huawei

Product P20 Firmware

Version Range Affected

To emily-l29c_9.1.0.311\(c461e2r1p11t8\) (exclusive)

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:huawei:p20_firmware:*:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

http://www.huawei.com/en/psirt/security-advisories/huawei-s…

Vendor Advisory

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191113-02-share-…

http://www.huawei.com/en/psirt/security-advisories/huawei-s…

Vendor Advisory

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191113-02-share-…

CVE-2019-5211

Description

EPSS (Exploit Prediction Scoring System)

EPSS (Exploit Prediction Scoring System)

EPSS Score Trend (Last 90 Days)

P20 Firmware by Huawei

Product Information

P20 Firmware by Huawei

Product Information

P20 Firmware by Huawei

Product Information

P20 Firmware by Huawei

Product Information

Iscriviti alla newsletter