Lucene search
Huawei TechnologiesHUAWEI-SA-20191204-01-SMARTPHONEHistoryDec 04, 2019 - 12:00 a.m.
Security Advisory - Improper Authentication Vulnerability in Smartphones
2019-12-0400:00:00
Huawei Technologies
www.huawei.com
59
3.6 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:P/A:N
3.5 Low
CVSS3
Attack Vector
PHYSICAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
0.001 Low
EPSS
Percentile
24.0%
There is an improper authentication vulnerability in smartphones. The applock does not perform a sufficient authentication in a rare condition, successful exploit could allow the attacker to use the application locked by applock in an instant. (Vulnerability ID: HWPSIRT-2019-04103)
This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2019-5252.
Huawei has released software updates to fix this vulnerability. This advisory is available at the following link:
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191204-01-smartphone-en
Affected configurations
Node
huaweialp-al00bRange<10.0.0.143
ORhuaweialp-tl00bRange<10.0.0.143
ORhuaweianne-al00Range<9.1.0.126
ORhuaweianne-al00Range<9.1.0.132
ORhuaweiares-al00bRange<9.1.0.151
ORhuaweibla-al00bRange<10.0.0.143
ORhuaweibla-tl00bRange<10.0.0.143
ORhuaweiberkeley-al20Range<9.1.0.333
ORhuaweiberkeley-l09Range<9.1.0.325
ORhuaweiberkeley-l09Range<9.1.0.337
ORhuaweiberkeley-tl10Range<9.1.0.333
ORhuaweicornell-al00aRange<9.1.0.333
ORhuaweicornell-tl10bRange<9.1.0.333
ORhuaweiever-l29bRange<10.0.0.180
ORhuaweiever-l29bRange<10.0.0.180
ORhuaweiever-l29bRange<10.0.0.180
ORhuaweifigo-l23Range<9.1.0.130
ORhuaweifigo-l31Range<9.1.0.122
ORhuaweifigo-l31Range<9.1.0.122
ORhuaweifigo-l31Range<9.1.0.122
ORhuaweifigo-l31Range<9.1.0.127
ORhuaweifigo-l31Range<9.1.0.130
ORhuaweifigo-l31Range<9.1.0.130
ORhuaweifigo-tl10bRange<9.1.0.127
ORhuaweiflorida-al20bMatch8.0.0.182
ORhuaweiflorida-l21Match8.0.0.133
ORhuaweiflorida-l21Range<9.1.0.139
ORhuaweiflorida-l22Match8.0.0.134
ORhuaweiflorida-l23Range<9.1.0.137
ORhuaweiflorida-tl10bRange<9.1.0.124
ORhuaweimate_20Range<10.0.0.195
ORhuaweimate_20Range<10.0.0.195
ORhuaweimate_20_proRange<10.0.0.154
ORhuaweimate_20_proRange<10.0.0.154
ORhuaweimate_20_proRange<10.0.0.154
ORhuaweimate_20_proRange<10.0.0.154
ORhuaweimate_20_proRange<10.0.0.154
ORhuaweimate_20_rsRange<10.0.0.175
ORhuaweimate_20_xRange<10.0.0.176
ORhuaweimate_20_xRange<10.0.0.176
ORhuaweimate_rsRange<10.0.0.143
ORhuaweip_smart_2019Range<9.1.0.262
ORhuaweip_smart_2019Range<9.1.0.262
ORhuaweip_smart_2019Range<9.1.0.262
ORhuaweip_smart_2019Range<9.1.0.281
ORhuaweip20_liteRange<9.1.0.200
ORhuaweip20_liteRange<9.1.0.200
ORhuaweip20_liteRange<9.1.0.246
ORhuaweip20_liteRange<9.1.0.246
ORhuaweip30Range<10.0.0.168
ORhuaweip30Range<10.0.0.168
ORhuaweip30Range<10.0.0.168
ORhuaweip30Range<10.0.0.168
ORhuaweip30Range<10.0.0.173
ORhuaweip30Range<10.0.0.178
ORhuaweip30Range<10.0.0.178
ORhuaweip30Range<10.0.0.187
ORhuaweip30_proRange<10.0.0.166
ORhuaweip30_proRange<10.0.0.166
ORhuaweip30_proRange<10.0.0.173
ORhuaweiy6_2019Range<9.1.0.234
ORhuaweiy6_2019Range<9.1.0.234
ORhuaweiy6_2019Range<9.1.0.234
ORhuaweiy6_2019Range<9.1.0.234
ORhuaweiy6_2019Range<9.1.0.242
ORhuaweiy6_2019Range<9.1.0.242
ORhuaweiy6_2019Range<9.1.0.242
ORhuaweiy6_2019Range<9.1.0.242
ORhuaweiy6_2019Range<9.1.0.242(C431E5R2P1
ORhuaweiy6_2019Range<9.1.0.242(C432E5R2P1
ORhuaweiy6_2019Range<9.1.0.242
ORhuaweiy6_2019Range<9.1.0.242
ORhuaweiy6_2019Range<9.1.0.242
ORhuaweiy6_2019Range<9.1.0.243
ORhuaweiy6_pro_2019Match9.0.1.156
ORhuaweiy6_pro_2019Range<9.1.0.234
ORhuaweiy6_pro_2019Range<9.1.0.242
ORhuaweiy6_pro_2019Range<9.1.0.248
ORhuaweiy9_2019Range<9.1.0.224
ORhuaweiy9_2019Range<9.1.0.224
ORhuaweiy9_2019Range<9.1.0.224
ORhuaweiy9_2019Range<9.1.0.230
ORhuaweiy9_2019Range<9.1.0.230
ORhuaweiy9_2019Range<9.1.0.230
ORhuaweiy9_2019Range<9.1.0.230
ORhuaweiar169jfvw-2sRange<9.1.0.210
ORhuaweiar169jfvw-2sRange<9.1.0.210
ORhuaweinova_3Range<9.1.0.333
ORhuaweinova_3eRange<9.1.0.126
ORhuaweinova_3eRange<9.1.0.200
ORhuaweinova_3eRange<9.1.0.201
ORhuaweinova_3eRange<9.1.0.201
ORhuaweinova_3eRange<9.1.0.201
ORhuaweinova_3eRange<9.1.0.246
ORhuaweinova_3eRange<9.1.0.246
ORhuaweinova_4Range<9.1.0.206
ORhuaweinova_4Range<9.1.0.225
ORhuaweinova_4Range<9.1.0.253
ORhuaweinova_lite_3Range<9.1.0.283
ORhuaweiharry-tl00cRange<9.1.0.226
ORhuaweihonor_10_liteRange<9.1.0.262
ORhuaweihonor_10_liteRange<9.1.0.262
ORhuaweihonor_10_liteRange<9.1.0.262
ORhuaweihonor_10_liteRange<9.1.0.262
ORhuaweihonor_8aRange<9.1.0.234
ORhuaweihonor_8aRange<9.1.0.240
ORhuaweihonor_8xMatch8.2.0.130
ORhuaweihonor_8xRange<9.1.0.237
ORhuaweihonor_8xRange<9.1.0.237
ORhuaweihonor_8xRange<9.1.0.237
ORhuaweihonor_8xRange<9.1.0.237
ORhuaweihonor_8xRange<9.1.0.237
ORhuaweihonor_view_20Range<9.1.0.201
ORhuaweihonor_view_20Range<9.1.0.201
ORhuaweijackman-l22Range<9.1.0.230
ORhuaweijohnson-al10cMatch8.2.0.165
ORhuaweibond-al10bMatch8.0.0.189
ORhuaweileland-l21aRange<9.1.0.136
ORhuaweileland-l22cMatch8.0.0.128
ORhuaweileland-l22cRange<9.1.0.130
ORhuaweileland-tl10bRange<9.1.0.124
ORhuaweileland-tl10cRange<9.1.0.124
ORhuaweilelandp-al10dMatch8.0.0.139
ORhuaweilelandp-l22cMatch8.0.0.112
ORhuaweilelandp-l22dRange<9.1.0.118
ORhuaweimadrid-al00aRange<9.1.0.246
ORhuaweiparis-l21bRange<9.1.0.331
ORhuaweiparis-l21mebRange<9.1.0.331
ORhuaweiparis-l29bRange<9.1.0.331
ORhuaweipotter-al00cRange<9.1.0.226
ORhuaweipotter-al10aRange<10.0.0.176
ORhuaweiprinceton-al10bRange<10.0.0.175
ORhuaweistanford-l09sRange<9.1.0.210
ORhuaweistanford-l09sRange<9.1.0.210
ORhuaweistanford-l09sRange<9.1.0.211
ORhuaweistanford-l09sRange<9.1.0.210
ORhuaweisydney-al00Range<9.1.0.228
ORhuaweisydney-tl00Range<9.1.0.228
ORhuaweisydneym-al00Range<9.1.0.228
ORhuaweiyale-al50aRange<9.1.1.158
ORhuaweiyale-l21aRange<10.0.0.168
ORhuaweiyale-l21aRange<10.0.0.168
ORhuaweiyale-l21aRange<10.0.0.168
ORhuaweiyale-l21aRange<10.0.0.168
ORhuaweiyale-l21aRange<10.0.0.168
ORhuaweiyale-l21aRange<10.0.0.168
ORhuaweiyale-l61aRange<9.1.0.195
ORhuaweiyale-tl00bRange<9.1.0.179
ORhuaweiyalep-al10bRange<9.1.0.179
ORhuaweichangxiang_7sRange<9.1.0.245
ORhuaweichangxiang_7sRange<9.1.0.246
ORhuaweimate_8Range<9.1.0.226
ORhuaweihuawei_firmwareRange<9.1.0.226
ORhuaweihuawei_firmwareRange<10.0.0.175
ORhuaweihuawei_firmwareRange<9.1.0.179
ORhuaweihuawei_firmwareRange<9.1.0.179
ORhuaweiy6_proRange<9.1.0.179
ORhuaweihuawei_firmwareRange<9.1.0.217
ORhuaweihuawei_firmwareRange<9.1.0.234
ORhuaweimax_presenceRange<9.1.0.151
ORhuaweimax_presenceRange<9.1.0.151
ORhuaweimagic2Range<10.0.0.175
ORhuaweimagic2Range<10.0.0.175
ORhuaweihonor_v20Range<10.0.0.175
ORhuaweihonor_v20Range<10.0.0.175
ORhuaweihonor_v20Range<10.0.0.176
ORhuaweihonor_8aRange<9.1.0.248
Related
cvelist
cvelist
CVE-2019-5252
2019-12-13 23:12:50
prion
prion
Authentication flaw
2019-12-14 00:15:00
nvd
nvd
CVE-2019-5252
2019-12-14 00:15:11
cve
cve
CVE-2019-5252
2019-12-14 00:15:11
3.6 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:P/A:N
3.5 Low
CVSS3
Attack Vector
PHYSICAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
0.001 Low
EPSS
Percentile
24.0%
Related for HUAWEI-SA-20191204-01-SMARTPHONE