CVE-2019-5217

Опубликовано: 04 июн. 2019

Источник: nvd

CVSS3: 4.6

CVSS2: 2.1

EPSS Низкий

Описание

There is an information disclosure vulnerability on Mate 9 Pro Huawei smartphones versions earlier than LON-AL00B9.0.1.150 (C00E61R1P8T8). An attacker could view the photos after a series of operations without unlocking the screen lock. Successful exploit could cause an information disclosure condition.

Ссылки

https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190417-01-smartphone-en
Vendor Advisory
https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190417-01-smartphone-en
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:huawei:mate_9_pro_firmware:*:*:*:*:*:*:*:*

Версия до lon-al00b9.0.1.150\(c00e61r1p8t8\) (исключая)

cpe:2.3:h:huawei:mate_9_pro:-:*:*:*:*:*:*:*

EPSS

Процентиль: 7%

0.00028

Низкий

4.6 Medium

CVSS3

2.1 Low

CVSS2

Дефекты

CWE-307

Связанные уязвимости

GHSA-f7wv-qp6p-3f43