CVE-2019-5292 Information

Description

Honor 10 Lite Honor 8A Huawei Y6 mobile phones with the versions before 9.1.0.217(C00E215R3P1) the versions before 9.1.0.205(C00E97R1P9) the versions before 9.1.0.205(C00E97R2P2) have an information leak vulnerability. Due to improper function error records of some module an attacker with the access permission may exploit the vulnerability to obtain some information.

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Reference

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191030-01-phone-en

Attack Complexity

LOW

Privileges Required

LOW

User Interaction Required

LOW

Scope

NONE

Confidentiality Impact

UNCHANGED

Integrity Impact

LOW

Availability Impact

NONE

Base Score

NONE

Base Severity

3.3