CVE-2019-5211

MEDIUM

5.7

Description

The Huawei Share function of P20 phones with versions earlier than Emily-L29C 9.1.0.311 has an improper file management vulnerability. The attacker tricks the victim to perform certain operations on the mobile phone during file transfer. Because the file is not properly processed, successfully exploit may cause some files on the victim's mobile phone are deleted.

CVE Details

CVSS v3.1 Score5.7

SeverityMEDIUM

CVSS VectorCVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

Attack VectorADJACENT_NETWORK

ComplexityLOW

Privileges RequiredNONE

User InteractionREQUIRED

Published11/29/2019

Last Modified11/21/2024

Sourcenvd

Honeypot Sightings0

Affected Products

huawei:p20huawei:p20_firmware

References

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191113-02-share-en(psirt@huawei.com)

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191113-02-share-en(af854a3a-2127-422b-91ae-364da2661108)

IOC Correlations

No correlations recorded

This product uses data from the NVD API but is not endorsed or certified by the NVD.