CVE-2019-5251

Published: Dec 13, 2019

Modified: Aug 4, 2024

PUBLISHED

Description

There is a path traversal vulnerability in several Huawei smartphones. The system does not sufficiently validate certain pathnames from the application. An attacker could trick the user into installing, backing up and restoring a malicious application. Successful exploit could cause information disclosure.

Vendor	Product	Versions
n/a	Honor V10;P30;Mate 20;Honor 9 Lite;Honor 9i;M6;P30 Pro;Honor 20s	affected `Versions earlier than 9.1.0.333(C00E333R2P1T8)` affected `Versions earlier than 9.1.0.226(C00E220R2P1)` affected `Versions earlier than 9.1.0.130(C00E115R2P8T8)` affected `Versions earlier than 9.1.0.139(C00E133R3P1)` affected `Versions earlier than 9.1.0.130(C00E112R2P10T8)` +5 more versions

References

https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191204-03-smartphone-en

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2019-5251

Description

Affected Products

References