CVE-2019-5215
Description
There is a man-in-the-middle (MITM) vulnerability on Huawei P30 smartphones versions before ELE-AL00 9.1.0.162(C01E160R1P12/C01E160R2P1), and P30 Pro versions before VOG-AL00 9.1.0.162 (C01E160R1P12/C01E160R2P1). When users establish connection and transfer data through Huawei Share, an attacker could sniff, spoof and do a series of operations to intrude the Huawei Share connection and launch a man-in-the-middle attack to obtain and tamper the data. (Vulnerability ID: HWPSIRT-2019-03109)
Risk Information
Base Score
6.8
MODERATE
Vector
CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
EPSS Score
Exploitation Probability
0.037
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Vulnerabilities CVE-2019-5215 are affected in p30_pro_firmware vog-al00_9.1.0.162(c01e160r1p12/c01e160r2p1) | NCM |
| Vulnerabilities CVE-2019-5215 are affected in p30_pro_firmware 10.1.0.160(c01e160r2p8) | NCM |
| Vulnerabilities CVE-2019-5215 are affected in p30_pro_firmware 10.1.0.160(c00e160r2p8) | NCM |
| Vulnerabilities CVE-2019-5215 are affected in p30_pro_firmware 10.1.0.135(c01e135r2p8) | NCM |
| Vulnerabilities CVE-2019-5215 are affected in p30_pro_firmware 10.1.0.135(c00e135r2p8) | NCM |
| Vulnerabilities CVE-2019-5215 are affected in p30_pro_firmware 10.1.0.126(c10e11r5p1) | NCM |
| Vulnerabilities CVE-2019-5215 are affected in p30_pro_firmware 10.1.0.123(c432e19r2p5patch02) | NCM |
| Vulnerabilities CVE-2019-5215 are affected in p30_pro_firmware 9.1.0.226(c00e210r2p1) | NCM |
| Vulnerabilities CVE-2019-5215 are affected in p30_pro_firmware 9.1.0.186(c00e180r2p1) | NCM |
| CVE-2019-5215 | NCM |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234