Vulnerabilities > CVE-2019-5295 - Unspecified vulnerability in Huawei Honor View 10 Firmware 9.0.0.202(C567E6R1P12T8)

047910
CVSS 4.4 - MEDIUM
Attack vector
LOCAL
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
local
huawei
NVD
Published: 2019-06-06
Updated: 2020-08-24

Summary

Huawei Honor V10 smartphones versions earlier than Berkeley-AL20 9.0.0.125(C00E125R2P14T8) have an authorization bypass vulnerability. Due to improper authorization implementation logic, attackers can bypass certain authorization scopes of smart phones by performing specific operations. This vulnerability can be exploited to perform operations beyond the scope of authorization.

Vulnerable Configurations

Part Description Count
OS
Huawei
1
Hardware
Huawei
1

References