Published: 29/11/2019 Updated: 05/12/2019

CVSS v2 Base Score: 4.4 | Impact Score: 6.4 | Exploitability Score: 3.4

CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8

VMScore: 392

Vector: AV:L/AC:M/Au:N/C:P/I:P/A:P

Nova 5i pro and Nova 5 smartphones with versions earlier than 9.1.1.190(C00E190R6P2)and Versions earlier than 9.1.1.175(C00E170R3P2) have an improper validation of array index vulnerability. The system does not properly validate the input value before use it as an array index when processing certain image information. The attacker tricks the user into installing a malicious application, successful exploit could cause malicious code execution.

Vulnerable Product	Search on Vulmon	Subscribe to Product
huawei nova_5i_pro_firmware
huawei nova_5_firmware

There is an improper validation of array index vulnerability in several smartphones The system does not properly validate the input value before use it as an array index when processing certain image information The attacker tricks the user into installing a malicious application, successful exploit could cause malicious code execution (Vulnerab ...

CWE-129 http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191120-01-smartphone-en https://nvd.nist.gov https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191120-01-smartphone-en

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2019-5210

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect