← Volver a CVEs
CVE-2019-5308
LOW2.4
Descripcion
Mate 20 RS smartphones with versions earlier than 9.1.0.135(C786E133R3P1) have an improper authorization vulnerability. The software does not properly restrict certain operation in ADB mode, successful exploit could allow the attacker to switch to third desktop after a series of operation.
Detalles CVE
Puntuacion CVSS v3.12.4
SeveridadLOW
Vector CVSSCVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Vector de ataquePHYSICAL
ComplejidadLOW
Privilegios requeridosNONE
Interaccion usuarioNONE
Publicado11/29/2019
Ultima modificacion11/21/2024
Fuentenvd
Avistamientos honeypot0
Productos afectados
huawei:mate_20_rshuawei:mate_20_rs_firmware
Referencias
https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191127-01-smartphone-en(psirt@huawei.com)
https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191127-01-smartphone-en(af854a3a-2127-422b-91ae-364da2661108)
Correlaciones IOC
Sin correlaciones registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.