Published: 26/12/2019 Updated: 02/01/2020

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9

VMScore: 668

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

M5 lite 10 with versions of 8.0.0.182(C00) have an insufficient input validation vulnerability. Due to the input validation logic is incorrect, an attacker can exploit this vulnerability to modify the memory of the device by doing a series of operations. Successful exploit may lead to malicious code execution.

Vulnerable Product	Search on Vulmon	Subscribe to Product
huawei m5_lite_10_firmware 8.0.0.182\\(c00\\)

There is an insufficient input validation vulnerability in some Huawei products Due to incorrect input validation logic, a high-privilege attacker should bypass the device security detection mechanism, then modify the memory of the device by doing a series of operations Successful exploit may lead to malicious code execution (Vulnerability ...

CWE-20 https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191225-01-validation-en https://nvd.nist.gov https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191225-01-validation-en

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2019-19398

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect