CVE-2019-5244
Description
Mate 9 Pro Huawei smartphones earlier than LON-L29C 8.0.0.361(C636) versions have an information leak vulnerability due to the lack of input validation. An attacker tricks the user who has root privilege to install an application on the smart phone, and the application can read some process information, which may cause sensitive information leak.
Risk Information
Base Score
5.5
MODERATE
Vector
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
EPSS Score
Exploitation Probability
0.106
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Vulnerabilities CVE-2017-17173 ,CVE-2019-5244 are affected in mate_9_pro_fimware lon-al00b_8.0.0.340a(c00) | NCM |
| Vulnerabilities CVE-2017-17173 ,CVE-2019-5244 are affected in mate_9_pro_fimware lon-al00b_8.0.0.334(c00) | NCM |
| Vulnerabilities CVE-2017-17326 ,CVE-2019-5244 are affected in mate_9_pro_fimware lon-al00bc00b229 | NCM |
| Vulnerabilities CVE-2017-17326 ,CVE-2019-5244 are affected in mate_9_pro_fimware lon-al00bc00b139d | NCM |
| Vulnerabilities CVE-2019-5244 are affected in mate_9_pro_fimware lon-al00b_8.0.0.356(c00) | NCM |
| Improper Input Validation Vulnerability (CVE-2019-5244) | NCM |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234