exploitDog

CVE-2019-5265

Опубликовано: 23 дек. 2019

Источник: nvd

CVSS3: 7.5

CVSS2: 5

EPSS Низкий

Описание

Huawei Share function in P30 9.1.0.193(C00E190R2P1) smartphone has an improper access control vulnerability. The function incorrectly controls certain access messages, attackers can simulate a sender to steal P2P network information. Successful exploit may cause information leakage.

Ссылки

https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191218-01-share-en
Vendor Advisory
https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191218-01-share-en
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:huawei:p30_firmware:9.1.0.193\(c00e190r2p1\):*:*:*:*:*:*:*

cpe:2.3:h:huawei:p30:-:*:*:*:*:*:*:*

EPSS

Процентиль: 41%

0.00187

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-h43f-65rj-8fvg

github

больше 3 лет назад

Huawei Share function in P30 9.1.0.193(C00E190R2P1) smartphone has an improper access control vulnerability. The function incorrectly controls certain access messages, attackers can simulate a sender to steal P2P network information. Successful exploit may cause information leakage.

EPSS

Процентиль: 41%

0.00187

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

NVD-CWE-noinfo