CVE-2019-5279 Information

Description

Huawei smart phones Emily-L29C with Versions earlier than 9.1.0.311(C10E2R1P13T8) Versions earlier than 9.1.0.311(C461E2R1P11T8) Versions earlier than 9.1.0.316(C635E2R1P11T8) Versions earlier than 9.1.0.311(C185E2R1P12T8) Versions earlier than 9.1.0.311(C605E2R1P12T8) Versions earlier than 9.1.0.311(C636E7R1P13T8) have an information leakage vulnerability. An attacker tricks the user into installing a malicious application which can copy specific files to the sdcard resulting in information leakage.

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

Reference

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191030-02-smartphone-en

Attack Complexity

LOW

Privileges Required

NONE

User Interaction Required

NONE

Scope

REQUIRED

Confidentiality Impact

UNCHANGED

Integrity Impact

HIGH

Availability Impact

NONE

Base Score

NONE

Base Severity

5.5