CVE-2019-5231
Description
P30 smartphones with versions earlier than ELLE-AL00B 9.1.0.186(C00E180R2P1) have an improper authorization vulnerability. The software incorrectly performs an authorization check when a user attempts to perform certain action. Successful exploit could allow the attacker to update a crafted package.
Risk Information
Base Score
4.6
MODERATE
Vector
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
EPSS Score
Exploitation Probability
0.055
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Multiple Vulnerabilities affected in p30_firmware 9.1.0.226(c00e220r2p1) | NCM |
| Multiple Vulnerabilities affected in p30_firmware 9.1.0.193(c00e190r2p1) | NCM |
| Multiple Vulnerabilities affected in p30_firmware 9.1.0.193 | NCM |
| Vulnerabilities CVE-2019-5231 ,CVE-2019-5287 ,CVE-2019-5288 are affected in p30_firmware ele-al00_9.1.0.162(c01e160r1p12/c01e160r2p1) | NCM |
| Vulnerabilities CVE-2019-5231 ,CVE-2019-5287 ,CVE-2019-5288 ,CVE-2019-5307 ,CVE-2021-22331 are affected in p30_firmware 10.1.0.160(c01e160r2p11) | NCM |
| Vulnerabilities CVE-2019-5231 ,CVE-2019-5287 ,CVE-2019-5288 ,CVE-2019-5307 ,CVE-2021-22331 are affected in p30_firmware 10.1.0.160(c00e160r3p8) | NCM |
| Vulnerabilities CVE-2019-5231 ,CVE-2019-5287 ,CVE-2019-5288 ,CVE-2019-5307 ,CVE-2021-22331 are affected in p30_firmware 10.1.0.160(c00e160r2p11) | NCM |
| Vulnerabilities CVE-2019-5231 ,CVE-2019-5287 ,CVE-2019-5288 ,CVE-2019-5307 ,CVE-2021-22331 are affected in p30_firmware 10.1.0.135(c00e135r2p11) | NCM |
| Vulnerabilities CVE-2019-5231 ,CVE-2019-5287 ,CVE-2019-5288 ,CVE-2019-5307 ,CVE-2021-22331 are affected in p30_firmware 10.1.0.128(c635e3r2p4) | NCM |
| Vulnerabilities CVE-2019-5231 ,CVE-2019-5287 ,CVE-2019-5288 ,CVE-2019-5307 ,CVE-2021-22331 are affected in p30_firmware 10.1.0.126(c636e7r3p4) | NCM |
| Vulnerabilities CVE-2019-5231 ,CVE-2019-5287 ,CVE-2019-5288 ,CVE-2019-5307 ,CVE-2021-22331 are affected in p30_firmware 10.1.0.126(c605e19r1p3) | NCM |
| Vulnerabilities CVE-2019-5231 ,CVE-2019-5287 ,CVE-2019-5288 ,CVE-2019-5307 ,CVE-2021-22331 are affected in p30_firmware 10.1.0.126(c461e7r3p1) | NCM |
| Vulnerabilities CVE-2019-5231 ,CVE-2019-5287 ,CVE-2019-5288 ,CVE-2019-5307 ,CVE-2021-22331 are affected in p30_firmware 10.1.0.126(c185e4r7p1) | NCM |
| Vulnerabilities CVE-2019-5231 ,CVE-2019-5287 ,CVE-2019-5288 ,CVE-2019-5307 ,CVE-2021-22331 are affected in p30_firmware 10.1.0.126(c10e7r5p1) | NCM |
| Vulnerabilities CVE-2019-5231 ,CVE-2019-5287 ,CVE-2019-5288 ,CVE-2019-5307 ,CVE-2021-22331 are affected in p30_firmware 10.1.0.123(c432e22r2p5) | NCM |
| Vulnerabilities CVE-2019-5231 ,CVE-2019-5287 ,CVE-2019-5288 ,CVE-2019-5307 ,CVE-2021-22331 are affected in p30_firmware 10.1.0.123(c431e22r2p5) | NCM |
| Vulnerabilities CVE-2019-5231 ,CVE-2019-5287 ,CVE-2019-5288 ,CVE-2019-5307 ,CVE-2021-22331 are affected in p30_firmware 10.0.0.185(c00e85r1p11) | NCM |
| Vulnerabilities CVE-2019-5231 ,CVE-2019-5287 ,CVE-2019-5288 ,CVE-2019-5307 ,CVE-2021-22331 are affected in p30_firmware 10.0.0.173(c00e73r1p11) | NCM |
| Vulnerabilities CVE-2019-5231 ,CVE-2019-5287 ,CVE-2019-5288 ,CVE-2019-5307 ,CVE-2021-22331 are affected in p30_firmware 10.0.0.166(c00e66r1p11) | NCM |
| Incorrect Authorization Vulnerability (CVE-2019-5231) | NCM |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234