Search criteria

12 vulnerabilities found for bla-l29c_firmware by huawei

CVE-2019-19412 (GCVE-0-2019-19412)

Vulnerability from nvd – Published: 2020-06-08 18:21 – Updated: 2024-08-05 02:16
VLAI?
Summary
Huawei smart phones have a Factory Reset Protection (FRP) bypass security vulnerability. When re-configuring the mobile phone using the factory reset protection (FRP) function, an attacker login the Talkback mode and can perform some operations to install a third-Party application. Affected products can be found in https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-frp-en.
Severity ?
No CVSS data available.
CWE
  • FRP Bypass
Assigner
References
Impacted products
Vendor Product Version
Huawei ALP-AL00B Affected: earlier than 9.0.0.181(C00E87R2P20T8)
Create a notification for this product.
    Huawei ALP-L09 Affected: earlier than 9.0.0.201(C432E4R1P9)
Create a notification for this product.
    Huawei ALP-L29 Affected: earlier than 9.0.0.177(C185E2R1P12T8)
Affected: earlier than 9.0.0.195(C636E2R1P12)
Create a notification for this product.
    Huawei Anne-AL00 Affected: earlier than 8.0.0.168(C00)
Create a notification for this product.
    Huawei BLA-AL00B Affected: earlier than 9.0.0.181(C00E88R2P15T8)
Create a notification for this product.
    Huawei BLA-L09C Affected: earlier than 9.0.0.177(C185E2R1P13T8)
Affected: earlier than 9.0.0.206(C432E4R1P11)
Create a notification for this product.
    Huawei BLA-L29C Affected: earlier than 9.0.0.179(C576E2R1P7T8)
Affected: earlier than 9.0.0.194(C185E2R1P13)
Affected: earlier than 9.0.0.206(C432E4R1P11)
Affected: earlier than 9.0.0.210(C635E4R1P13)
Create a notification for this product.
    Huawei Berkeley-AL20 Affected: earlier than 9.0.0.156(C00E156R2P14T8)
Create a notification for this product.
    Huawei Berkeley-L09 Affected: earlier than 8.0.0.172(C432)
Affected: earlier than 8.0.0.173(C636)
Create a notification for this product.
    Huawei Emily-L29C Affected: earlier than 9.0.0.159(C185E2R1P12T8)
Affected: earlier than 9.0.0.159(C461E2R1P11T8)
Affected: earlier than 9.0.0.160(C432E7R1P11T8)
Affected: earlier than 9.0.0.165(C605E2R1P12)
Affected: earlier than 9.0.0.168(C636E7R1P13T8)
Affected: earlier than 9.0.0.168(C782E3R1P11T8)
Affected: earlier than 9.0.0.196(C635E2R1P11T8)
Create a notification for this product.
    Huawei Figo-L03 Affected: earlier than 9.1.0.130(C605E6R1P5T8)
Create a notification for this product.
    Huawei Figo-L21 Affected: earlier than 9.1.0.130(C185E6R1P5T8)
Affected: earlier than 9.1.0.130(C635E6R1P5T8)
Create a notification for this product.
    Huawei Figo-L23 Affected: earlier than 9.1.0.130(C605E6R1P5T8)
Create a notification for this product.
    Huawei Figo-L31 Affected: earlier than 9.1.0.130(C432E8R1P5T8)
Create a notification for this product.
    Huawei Florida-L03 Affected: earlier than 9.1.0.121(C605E5R1P1T8)
Create a notification for this product.
    Huawei Florida-L21 Affected: earlier than 8.0.0.129(C605)
Affected: earlier than 8.0.0.131(C432)
Affected: earlier than 8.0.0.132(C185)
Create a notification for this product.
    Huawei Florida-L22 Affected: earlier than 8.0.0.132(C636)
Create a notification for this product.
    Huawei Florida-L23 Affected: earlier than 8.0.0.144(C605)
Create a notification for this product.
    Huawei HUAWEI P smart Affected: earlier than 9.1.0.130(C185E6R1P5T8)
Affected: earlier than 9.1.0.130(C605E6R1P5T8)
Create a notification for this product.
    Huawei HUAWEI P smart,HUAWEI Y7s Affected: earlier than 9.1.0.124(C636E6R1P5T8)
Create a notification for this product.
    Huawei HUAWEI P20 lite Affected: earlier than 8.0.0.148(C635)
Affected: earlier than 8.0.0.155(C185)
Affected: earlier than 8.0.0.155(C605)
Affected: earlier than 8.0.0.156(C605)
Affected: earlier than 8.0.0.157(C432)
Create a notification for this product.
    Huawei HUAWEI nova 3e,HUAWEI P20 lite Affected: earlier than 8.0.0.147(C461)
Affected: earlier than 8.0.0.148(ZAFC185)
Affected: earlier than 8.0.0.160(C185)
Affected: earlier than 8.0.0.160(C605)
Affected: earlier than 8.0.0.168(C432)
Affected: earlier than 8.0.0.172(C636)
Create a notification for this product.
    Huawei Honor View 10 Affected: earlier than 9.0.0.202(C567E6R1P12T8)
Create a notification for this product.
    Huawei Leland-AL00A Affected: earlier than 8.0.0.182(C00)
Create a notification for this product.
    Huawei Leland-L21A Affected: earlier than 8.0.0.135(C185)
Affected: earlier than 9.1.0.118(C636E4R1P1T8)
Create a notification for this product.
    Huawei Leland-L22A Affected: earlier than 9.1.0.118(C636E4R1P1T8)
Create a notification for this product.
    Huawei Leland-L22C Affected: earlier than 9.1.0.118(C636E4R1P1T8)
Create a notification for this product.
    Huawei Leland-L31A Affected: earlier than 8.0.0.139(C432)
Create a notification for this product.
Show details on NVD website
To clipboard 

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T02:16:47.114Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-frp-en"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "ALP-AL00B",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 9.0.0.181(C00E87R2P20T8)"
            }
          ]
        },
        {
          "product": "ALP-L09",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 9.0.0.201(C432E4R1P9)"
            }
          ]
        },
        {
          "product": "ALP-L29",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 9.0.0.177(C185E2R1P12T8)"
            },
            {
              "status": "affected",
              "version": "earlier than 9.0.0.195(C636E2R1P12)"
            }
          ]
        },
        {
          "product": "Anne-AL00",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 8.0.0.168(C00)"
            }
          ]
        },
        {
          "product": "BLA-AL00B",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 9.0.0.181(C00E88R2P15T8)"
            }
          ]
        },
        {
          "product": "BLA-L09C",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 9.0.0.177(C185E2R1P13T8)"
            },
            {
              "status": "affected",
              "version": "earlier than 9.0.0.206(C432E4R1P11)"
            }
          ]
        },
        {
          "product": "BLA-L29C",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 9.0.0.179(C576E2R1P7T8)"
            },
            {
              "status": "affected",
              "version": "earlier than 9.0.0.194(C185E2R1P13)"
            },
            {
              "status": "affected",
              "version": "earlier than 9.0.0.206(C432E4R1P11)"
            },
            {
              "status": "affected",
              "version": "earlier than 9.0.0.210(C635E4R1P13)"
            }
          ]
        },
        {
          "product": "Berkeley-AL20",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 9.0.0.156(C00E156R2P14T8)"
            }
          ]
        },
        {
          "product": "Berkeley-L09",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 8.0.0.172(C432)"
            },
            {
              "status": "affected",
              "version": "earlier than 8.0.0.173(C636)"
            }
          ]
        },
        {
          "product": "Emily-L29C",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 9.0.0.159(C185E2R1P12T8)"
            },
            {
              "status": "affected",
              "version": "earlier than 9.0.0.159(C461E2R1P11T8)"
            },
            {
              "status": "affected",
              "version": "earlier than 9.0.0.160(C432E7R1P11T8)"
            },
            {
              "status": "affected",
              "version": "earlier than 9.0.0.165(C605E2R1P12)"
            },
            {
              "status": "affected",
              "version": "earlier than 9.0.0.168(C636E7R1P13T8)"
            },
            {
              "status": "affected",
              "version": "earlier than 9.0.0.168(C782E3R1P11T8)"
            },
            {
              "status": "affected",
              "version": "earlier than 9.0.0.196(C635E2R1P11T8)"
            }
          ]
        },
        {
          "product": "Figo-L03",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 9.1.0.130(C605E6R1P5T8)"
            }
          ]
        },
        {
          "product": "Figo-L21",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 9.1.0.130(C185E6R1P5T8)"
            },
            {
              "status": "affected",
              "version": "earlier than 9.1.0.130(C635E6R1P5T8)"
            }
          ]
        },
        {
          "product": "Figo-L23",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 9.1.0.130(C605E6R1P5T8)"
            }
          ]
        },
        {
          "product": "Figo-L31",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 9.1.0.130(C432E8R1P5T8)"
            }
          ]
        },
        {
          "product": "Florida-L03",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 9.1.0.121(C605E5R1P1T8)"
            }
          ]
        },
        {
          "product": "Florida-L21",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 8.0.0.129(C605)"
            },
            {
              "status": "affected",
              "version": "earlier than 8.0.0.131(C432)"
            },
            {
              "status": "affected",
              "version": "earlier than 8.0.0.132(C185)"
            }
          ]
        },
        {
          "product": "Florida-L22",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 8.0.0.132(C636)"
            }
          ]
        },
        {
          "product": "Florida-L23",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 8.0.0.144(C605)"
            }
          ]
        },
        {
          "product": "HUAWEI P smart",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 9.1.0.130(C185E6R1P5T8)"
            },
            {
              "status": "affected",
              "version": "earlier than 9.1.0.130(C605E6R1P5T8)"
            }
          ]
        },
        {
          "product": "HUAWEI P smart,HUAWEI Y7s",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 9.1.0.124(C636E6R1P5T8)"
            }
          ]
        },
        {
          "product": "HUAWEI P20 lite",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 8.0.0.148(C635)"
            },
            {
              "status": "affected",
              "version": "earlier than 8.0.0.155(C185)"
            },
            {
              "status": "affected",
              "version": "earlier than 8.0.0.155(C605)"
            },
            {
              "status": "affected",
              "version": "earlier than 8.0.0.156(C605)"
            },
            {
              "status": "affected",
              "version": "earlier than 8.0.0.157(C432)"
            }
          ]
        },
        {
          "product": "HUAWEI nova 3e,HUAWEI P20 lite",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 8.0.0.147(C461)"
            },
            {
              "status": "affected",
              "version": "earlier than 8.0.0.148(ZAFC185)"
            },
            {
              "status": "affected",
              "version": "earlier than 8.0.0.160(C185)"
            },
            {
              "status": "affected",
              "version": "earlier than 8.0.0.160(C605)"
            },
            {
              "status": "affected",
              "version": "earlier than 8.0.0.168(C432)"
            },
            {
              "status": "affected",
              "version": "earlier than 8.0.0.172(C636)"
            }
          ]
        },
        {
          "product": "Honor View 10",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 9.0.0.202(C567E6R1P12T8)"
            }
          ]
        },
        {
          "product": "Leland-AL00A",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 8.0.0.182(C00)"
            }
          ]
        },
        {
          "product": "Leland-L21A",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 8.0.0.135(C185)"
            },
            {
              "status": "affected",
              "version": "earlier than 9.1.0.118(C636E4R1P1T8)"
            }
          ]
        },
        {
          "product": "Leland-L22A",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 9.1.0.118(C636E4R1P1T8)"
            }
          ]
        },
        {
          "product": "Leland-L22C",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 9.1.0.118(C636E4R1P1T8)"
            }
          ]
        },
        {
          "product": "Leland-L31A",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 8.0.0.139(C432)"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Huawei smart phones have a Factory Reset Protection (FRP) bypass security vulnerability. When re-configuring the mobile phone using the factory reset protection (FRP) function, an attacker login the Talkback mode and can perform some operations to install a third-Party application. Affected products can be found in https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-frp-en."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "FRP Bypass",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2020-07-08T15:29:39",
        "orgId": "25ac1063-e409-4190-8079-24548c77ea2e",
        "shortName": "huawei"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-frp-en"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@huawei.com",
          "ID": "CVE-2019-19412",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "ALP-AL00B",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 9.0.0.181(C00E87R2P20T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "ALP-L09",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 9.0.0.201(C432E4R1P9)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "ALP-L29",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 9.0.0.177(C185E2R1P12T8)"
                          },
                          {
                            "version_value": "earlier than 9.0.0.195(C636E2R1P12)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Anne-AL00",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 8.0.0.168(C00)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "BLA-AL00B",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 9.0.0.181(C00E88R2P15T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "BLA-L09C",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 9.0.0.177(C185E2R1P13T8)"
                          },
                          {
                            "version_value": "earlier than 9.0.0.206(C432E4R1P11)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "BLA-L29C",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 9.0.0.179(C576E2R1P7T8)"
                          },
                          {
                            "version_value": "earlier than 9.0.0.194(C185E2R1P13)"
                          },
                          {
                            "version_value": "earlier than 9.0.0.206(C432E4R1P11)"
                          },
                          {
                            "version_value": "earlier than 9.0.0.210(C635E4R1P13)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Berkeley-AL20",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 9.0.0.156(C00E156R2P14T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Berkeley-L09",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 8.0.0.172(C432)"
                          },
                          {
                            "version_value": "earlier than 8.0.0.173(C636)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Emily-L29C",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 9.0.0.159(C185E2R1P12T8)"
                          },
                          {
                            "version_value": "earlier than 9.0.0.159(C461E2R1P11T8)"
                          },
                          {
                            "version_value": "earlier than 9.0.0.160(C432E7R1P11T8)"
                          },
                          {
                            "version_value": "earlier than 9.0.0.165(C605E2R1P12)"
                          },
                          {
                            "version_value": "earlier than 9.0.0.168(C636E7R1P13T8)"
                          },
                          {
                            "version_value": "earlier than 9.0.0.168(C782E3R1P11T8)"
                          },
                          {
                            "version_value": "earlier than 9.0.0.196(C635E2R1P11T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Figo-L03",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 9.1.0.130(C605E6R1P5T8)"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Huawei"
              },
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Figo-L21",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 9.1.0.130(C185E6R1P5T8)"
                          },
                          {
                            "version_value": "earlier than 9.1.0.130(C635E6R1P5T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Figo-L23",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 9.1.0.130(C605E6R1P5T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Figo-L31",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 9.1.0.130(C432E8R1P5T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Florida-L03",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 9.1.0.121(C605E5R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Florida-L21",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 8.0.0.129(C605)"
                          },
                          {
                            "version_value": "earlier than 8.0.0.131(C432)"
                          },
                          {
                            "version_value": "earlier than 8.0.0.132(C185)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Florida-L22",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 8.0.0.132(C636)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Florida-L23",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 8.0.0.144(C605)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "HUAWEI P smart",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 9.1.0.130(C185E6R1P5T8)"
                          },
                          {
                            "version_value": "earlier than 9.1.0.130(C605E6R1P5T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "HUAWEI P smart,HUAWEI Y7s",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 9.1.0.124(C636E6R1P5T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "HUAWEI P20 lite",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 8.0.0.148(C635)"
                          },
                          {
                            "version_value": "earlier than 8.0.0.155(C185)"
                          },
                          {
                            "version_value": "earlier than 8.0.0.155(C605)"
                          },
                          {
                            "version_value": "earlier than 8.0.0.156(C605)"
                          },
                          {
                            "version_value": "earlier than 8.0.0.157(C432)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "HUAWEI nova 3e,HUAWEI P20 lite",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 8.0.0.147(C461)"
                          },
                          {
                            "version_value": "earlier than 8.0.0.148(ZAFC185)"
                          },
                          {
                            "version_value": "earlier than 8.0.0.160(C185)"
                          },
                          {
                            "version_value": "earlier than 8.0.0.160(C605)"
                          },
                          {
                            "version_value": "earlier than 8.0.0.168(C432)"
                          },
                          {
                            "version_value": "earlier than 8.0.0.172(C636)"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Huawei"
              },
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Honor View 10",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 9.0.0.202(C567E6R1P12T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Leland-AL00A",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 8.0.0.182(C00)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Leland-L21A",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 8.0.0.135(C185)"
                          },
                          {
                            "version_value": "earlier than 9.1.0.118(C636E4R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Leland-L22A",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 9.1.0.118(C636E4R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Leland-L22C",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 9.1.0.118(C636E4R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Leland-L31A",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 8.0.0.139(C432)"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Huawei"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Huawei smart phones have a Factory Reset Protection (FRP) bypass security vulnerability. When re-configuring the mobile phone using the factory reset protection (FRP) function, an attacker login the Talkback mode and can perform some operations to install a third-Party application. Affected products can be found in https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-frp-en."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "FRP Bypass"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-frp-en",
              "refsource": "CONFIRM",
              "url": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-frp-en"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "25ac1063-e409-4190-8079-24548c77ea2e",
    "assignerShortName": "huawei",
    "cveId": "CVE-2019-19412",
    "datePublished": "2020-06-08T18:21:28",
    "dateReserved": "2019-11-29T00:00:00",
    "dateUpdated": "2024-08-05T02:16:47.114Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2019-5303 (GCVE-0-2019-5303)

Vulnerability from nvd – Published: 2020-04-27 20:01 – Updated: 2024-08-04 19:54
VLAI?
Summary
There are two denial of service vulnerabilities on some Huawei smartphones. An attacker may send specially crafted TD-SCDMA messages from a rogue base station to the affected devices. Due to insufficient input validation of two values when parsing the messages, successful exploit may cause device abnormal. This is 2 out of 2 vulnerabilities. Different than CVE-2020-5302. Affected products are: ALP-AL00B: earlier than 9.1.0.333(C00E333R2P1T8) ALP-L09: earlier than 9.1.0.300(C432E4R1P9T8) ALP-L29: earlier than 9.1.0.315(C636E5R1P13T8) BLA-L29C: earlier than 9.1.0.321(C636E4R1P14T8), earlier than 9.1.0.330(C432E6R1P12T8), earlier than 9.1.0.302(C635E4R1P13T8) Berkeley-AL20: earlier than 9.1.0.333(C00E333R2P1T8) Berkeley-L09: earlier than 9.1.0.350(C10E3R1P14T8), earlier than 9.1.0.351(C432E5R1P13T8), earlier than 9.1.0.350(C636E4R1P13T8) Charlotte-L09C: earlier than 9.1.0.311(C185E4R1P11T8), earlier than 9.1.0.345(C432E8R1P11T8) Charlotte-L29C: earlier than 9.1.0.325(C185E4R1P11T8), earlier than 9.1.0.335(C636E3R1P13T8), earlier than 9.1.0.345(C432E8R1P11T8), earlier than 9.1.0.336(C605E3R1P12T8) Columbia-AL10B: earlier than 9.1.0.333(C00E333R1P1T8) Columbia-L29D: earlier than 9.1.0.350(C461E3R1P11T8), earlier than 9.1.0.350(C185E3R1P12T8), earlier than 9.1.0.350(C10E5R1P14T8), earlier than 9.1.0.351(C432E5R1P13T8) Cornell-AL00A: earlier than 9.1.0.333(C00E333R1P1T8) Cornell-L29A: earlier than 9.1.0.328(C185E1R1P9T8), earlier than 9.1.0.328(C432E1R1P9T8), earlier than 9.1.0.330(C461E1R1P9T8), earlier than 9.1.0.328(C636E2R1P12T8) Emily-L09C: earlier than 9.1.0.336(C605E4R1P12T8), earlier than 9.1.0.311(C185E2R1P12T8), earlier than 9.1.0.345(C432E10R1P12T8) Emily-L29C: earlier than 9.1.0.311(C605E2R1P12T8), earlier than 9.1.0.311(C636E7R1P13T8), earlier than 9.1.0.311(C432E7R1P11T8) Ever-L29B: earlier than 9.1.0.311(C185E3R3P1), earlier than 9.1.0.310(C636E3R2P1), earlier than 9.1.0.310(C432E3R1P12) HUAWEI Mate 20: earlier than 9.1.0.131(C00E131R3P1) HUAWEI Mate 20 Pro: earlier than 9.1.0.310(C185E10R2P1) HUAWEI Mate 20 RS: earlier than 9.1.0.135(C786E133R3P1) HUAWEI Mate 20 X: earlier than 9.1.0.135(C00E133R2P1) HUAWEI P20: earlier than 9.1.0.333(C00E333R1P1T8) HUAWEI P20 Pro: earlier than 9.1.0.333(C00E333R1P1T8) HUAWEI P30: earlier than 9.1.0.193 HUAWEI P30 Pro: earlier than 9.1.0.186(C00E180R2P1) HUAWEI Y9 2019: earlier than 9.1.0.220(C605E3R1P1T8) HUAWEI nova lite 3: earlier than 9.1.0.305(C635E8R2P2) Honor 10 Lite: earlier than 9.1.0.283(C605E8R2P2) Honor 8X: earlier than 9.1.0.221(C461E2R1P1T8) Honor View 20: earlier than 9.1.0.238(C432E1R3P1) Jackman-L22: earlier than 9.1.0.247(C636E2R4P1T8) Paris-L21B: earlier than 9.1.0.331(C432E1R1P2T8) Paris-L21MEB: earlier than 9.1.0.331(C185E4R1P3T8) Paris-L29B: earlier than 9.1.0.331(C636E1R1P3T8) Sydney-AL00: earlier than 9.1.0.212(C00E62R1P7T8) Sydney-L21: earlier than 9.1.0.215(C432E1R1P1T8), earlier than 9.1.0.213(C185E1R1P1T8) Sydney-L21BR: earlier than 9.1.0.213(C185E1R1P2T8) Sydney-L22: earlier than 9.1.0.258(C636E1R1P1T8) Sydney-L22BR: earlier than 9.1.0.258(C636E1R1P1T8) SydneyM-AL00: earlier than 9.1.0.228(C00E78R1P7T8) SydneyM-L01: earlier than 9.1.0.215(C782E2R1P1T8), earlier than 9.1.0.213(C185E1R1P1T8), earlier than 9.1.0.270(C432E3R1P1T8) SydneyM-L03: earlier than 9.1.0.217(C605E1R1P1T8) SydneyM-L21: earlier than 9.1.0.221(C461E1R1P1T8), earlier than 9.1.0.215(C432E4R1P1T8) SydneyM-L22: earlier than 9.1.0.259(C185E1R1P2T8), earlier than 9.1.0.220(C635E1R1P2T8), earlier than 9.1.0.216(C569E1R1P1T8) SydneyM-L23: earlier than 9.1.0.226(C605E2R1P1T8) Yale-L21A: earlier than 9.1.0.154(C432E2R3P2), earlier than 9.1.0.154(C461E2R2P1), earlier than 9.1.0.154(C636E2R2P1) Honor 20: earlier than 9.1.0.152(C00E150R5P1) Honor Magic2: earlier than 10.0.0.187 Honor V20: earlier than 9.1.0.234(C00E234R4P3)
Severity ?
No CVSS data available.
CWE
  • Denial of Service
Assigner
References
Impacted products
Vendor Product Version
Huawei ALP-AL00B Affected: Versions earlier than 9.1.0.333(C00E333R2P1T8)
Create a notification for this product.
    Huawei ALP-L09 Affected: Versions earlier than 9.1.0.300(C432E4R1P9T8)
Create a notification for this product.
    Huawei ALP-L29 Affected: Versions earlier than 9.1.0.315(C636E5R1P13T8)
Create a notification for this product.
    Huawei BLA-L29C Affected: Versions earlier than 9.1.0.321(C636E4R1P14T8)
Affected: Versions earlier than 9.1.0.330(C432E6R1P12T8)
Affected: Versions earlier than 9.1.0.302(C635E4R1P13T8)
Create a notification for this product.
    Huawei Berkeley-AL20 Affected: Versions earlier than 9.1.0.333(C00E333R2P1T8)
Create a notification for this product.
    Huawei Berkeley-L09 Affected: Versions earlier than 9.1.0.350(C10E3R1P14T8)
Affected: Versions earlier than 9.1.0.351(C432E5R1P13T8)
Affected: Versions earlier than 9.1.0.350(C636E4R1P13T8)
Create a notification for this product.
    Huawei Charlotte-L09C Affected: Versions earlier than 9.1.0.311(C185E4R1P11T8)
Affected: Versions earlier than 9.1.0.345(C432E8R1P11T8)
Create a notification for this product.
    Huawei Charlotte-L29C Affected: Versions earlier than 9.1.0.325(C185E4R1P11T8)
Affected: Versions earlier than 9.1.0.335(C636E3R1P13T8)
Affected: Versions earlier than 9.1.0.345(C432E8R1P11T8)
Affected: Versions earlier than 9.1.0.336(C605E3R1P12T8)
Create a notification for this product.
    Huawei Columbia-AL10B Affected: Versions earlier than 9.1.0.333(C00E333R1P1T8)
Create a notification for this product.
    Huawei Columbia-L29D Affected: Versions earlier than 9.1.0.350(C461E3R1P11T8)
Affected: Versions earlier than 9.1.0.350(C185E3R1P12T8)
Affected: Versions earlier than 9.1.0.350(C10E5R1P14T8)
Affected: Versions earlier than 9.1.0.351(C432E5R1P13T8)
Create a notification for this product.
    Huawei Cornell-AL00A Affected: Versions earlier than 9.1.0.333(C00E333R1P1T8)
Create a notification for this product.
    Huawei Cornell-L29A Affected: Versions earlier than 9.1.0.328(C185E1R1P9T8)
Affected: Versions earlier than 9.1.0.328(C432E1R1P9T8)
Affected: Versions earlier than 9.1.0.330(C461E1R1P9T8)
Affected: Versions earlier than 9.1.0.328(C636E2R1P12T8)
Create a notification for this product.
    Huawei Emily-L09C Affected: Versions earlier than 9.1.0.336(C605E4R1P12T8)
Affected: Versions earlier than 9.1.0.311(C185E2R1P12T8)
Affected: Versions earlier than 9.1.0.345(C432E10R1P12T8)
Create a notification for this product.
    Huawei Emily-L29C Affected: Versions earlier than 9.1.0.311(C605E2R1P12T8)
Affected: Versions earlier than 9.1.0.311(C636E7R1P13T8)
Affected: Versions earlier than 9.1.0.311(C432E7R1P11T8)
Create a notification for this product.
    Huawei Ever-L29B Affected: Versions earlier than 9.1.0.311(C185E3R3P1)
Create a notification for this product.
    Huawei HUAWEI Mate 20 Affected: Versions earlier than 9.1.0.131(C00E131R3P1)
Create a notification for this product.
    Huawei HUAWEI Mate 20 Pro Affected: Versions earlier than 9.1.0.310(C185E10R2P1)
Create a notification for this product.
    Huawei HUAWEI Mate 20 RS Affected: Versions earlier than 9.1.0.135(C786E133R3P1)
Create a notification for this product.
    Huawei HUAWEI Mate 20 X Affected: Versions earlier than 9.1.0.135(C00E133R2P1)
Create a notification for this product.
    Huawei HUAWEI P20 Affected: Versions earlier than 9.1.0.333(C00E333R1P1T8)
Create a notification for this product.
    Huawei HUAWEI P20 Pro Affected: Versions earlier than 9.1.0.333(C00E333R1P1T8)
Create a notification for this product.
    Huawei HUAWEI P30 Affected: Versions earlier than 9.1.0.193
Create a notification for this product.
    Huawei HUAWEI P30 Pro Affected: Versions earlier than 9.1.0.186(C00E180R2P1)
Create a notification for this product.
    Huawei HUAWEI Y9 2019 Affected: Versions earlier than 9.1.0.220(C605E3R1P1T8)
Create a notification for this product.
    Huawei HUAWEI nova lite 3 Affected: Versions earlier than 9.1.0.305(C635E8R2P2)
Create a notification for this product.
    Huawei Honor 10 Lite Affected: Versions earlier than 9.1.0.283(C605E8R2P2)
Create a notification for this product.
    Huawei Honor 8X Affected: Versions earlier than 9.1.0.221(C461E2R1P1T8)
Create a notification for this product.
    Huawei Honor View 20 Affected: Versions earlier than 9.1.0.238(C432E1R3P1)
Create a notification for this product.
    Huawei Jackman-L22 Affected: Versions earlier than 9.1.0.247(C636E2R4P1T8)
Create a notification for this product.
    Huawei Paris-L21B Affected: Versions earlier than 9.1.0.331(C432E1R1P2T8)
Create a notification for this product.
    Huawei Paris-L21MEB Affected: Versions earlier than 9.1.0.331(C185E4R1P3T8)
Create a notification for this product.
    Huawei Paris-L29B Affected: Versions earlier than 9.1.0.331(C636E1R1P3T8)
Create a notification for this product.
    Huawei Sydney-AL00 Affected: Versions earlier than 9.1.0.212(C00E62R1P7T8)
Create a notification for this product.
    Huawei Sydney-L21 Affected: Versions earlier than 9.1.0.215(C432E1R1P1T8)
Affected: Versions earlier than 9.1.0.213(C185E1R1P1T8)
Create a notification for this product.
    Huawei Sydney-L21BR Affected: Versions earlier than 9.1.0.213(C185E1R1P2T8)
Create a notification for this product.
    Huawei Sydney-L22 Affected: Versions earlier than 9.1.0.258(C636E1R1P1T8)
Create a notification for this product.
    Huawei Sydney-L22BR Affected: Versions earlier than 9.1.0.258(C636E1R1P1T8)
Create a notification for this product.
    Huawei SydneyM-AL00 Affected: Versions earlier than 9.1.0.228(C00E78R1P7T8)
Create a notification for this product.
    Huawei SydneyM-L01 Affected: Versions earlier than 9.1.0.215(C782E2R1P1T8)
Affected: Versions earlier than 9.1.0.213(C185E1R1P1T8)
Affected: Versions earlier than 9.1.0.270(C432E3R1P1T8)
Create a notification for this product.
    Huawei SydneyM-L03 Affected: Versions earlier than 9.1.0.217(C605E1R1P1T8)
Create a notification for this product.
    Huawei SydneyM-L21 Affected: Versions earlier than 9.1.0.221(C461E1R1P1T8)
Affected: Versions earlier than 9.1.0.215(C432E4R1P1T8)
Create a notification for this product.
    Huawei SydneyM-L22 Affected: Versions earlier than 9.1.0.259(C185E1R1P2T8)
Affected: Versions earlier than 9.1.0.220(C635E1R1P2T8)
Affected: Versions earlier than 9.1.0.216(C569E1R1P1T8)
Create a notification for this product.
    Huawei SydneyM-L23 Affected: Versions earlier than 9.1.0.226(C605E2R1P1T8)
Create a notification for this product.
    Huawei Yale-L21A Affected: Versions earlier than 9.1.0.154(C432E2R3P2)
Affected: Versions earlier than 9.1.0.154(C461E2R2P1)
Affected: Versions earlier than 9.1.0.154(C636E2R2P1)
Create a notification for this product.
    Huawei Honor 20 Affected: Versions earlier than 9.1.0.152(C00E150R5P1)
Create a notification for this product.
    Huawei Honor Magic2 Affected: Versions earlier than 10.0.0.187
Create a notification for this product.
    Huawei Honor V20 Affected: Versions earlier than 9.1.0.234(C00E234R4P3)
Create a notification for this product.
Show details on NVD website
To clipboard 

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T19:54:53.218Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190814-01-mobile-en"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "ALP-AL00B",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.333(C00E333R2P1T8)"
            }
          ]
        },
        {
          "product": "ALP-L09",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.300(C432E4R1P9T8)"
            }
          ]
        },
        {
          "product": "ALP-L29",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.315(C636E5R1P13T8)"
            }
          ]
        },
        {
          "product": "BLA-L29C",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.321(C636E4R1P14T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.330(C432E6R1P12T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.302(C635E4R1P13T8)"
            }
          ]
        },
        {
          "product": "Berkeley-AL20",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.333(C00E333R2P1T8)"
            }
          ]
        },
        {
          "product": "Berkeley-L09",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.350(C10E3R1P14T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.351(C432E5R1P13T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.350(C636E4R1P13T8)"
            }
          ]
        },
        {
          "product": "Charlotte-L09C",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.311(C185E4R1P11T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.345(C432E8R1P11T8)"
            }
          ]
        },
        {
          "product": "Charlotte-L29C",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.325(C185E4R1P11T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.335(C636E3R1P13T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.345(C432E8R1P11T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.336(C605E3R1P12T8)"
            }
          ]
        },
        {
          "product": "Columbia-AL10B",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.333(C00E333R1P1T8)"
            }
          ]
        },
        {
          "product": "Columbia-L29D",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.350(C461E3R1P11T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.350(C185E3R1P12T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.350(C10E5R1P14T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.351(C432E5R1P13T8)"
            }
          ]
        },
        {
          "product": "Cornell-AL00A",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.333(C00E333R1P1T8)"
            }
          ]
        },
        {
          "product": "Cornell-L29A",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.328(C185E1R1P9T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.328(C432E1R1P9T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.330(C461E1R1P9T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.328(C636E2R1P12T8)"
            }
          ]
        },
        {
          "product": "Emily-L09C",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.336(C605E4R1P12T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.311(C185E2R1P12T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.345(C432E10R1P12T8)"
            }
          ]
        },
        {
          "product": "Emily-L29C",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.311(C605E2R1P12T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.311(C636E7R1P13T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.311(C432E7R1P11T8)"
            }
          ]
        },
        {
          "product": "Ever-L29B",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.311(C185E3R3P1)"
            }
          ]
        },
        {
          "product": "HUAWEI Mate 20",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.131(C00E131R3P1)"
            }
          ]
        },
        {
          "product": "HUAWEI Mate 20 Pro",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.310(C185E10R2P1)"
            }
          ]
        },
        {
          "product": "HUAWEI Mate 20 RS",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.135(C786E133R3P1)"
            }
          ]
        },
        {
          "product": "HUAWEI Mate 20 X",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.135(C00E133R2P1)"
            }
          ]
        },
        {
          "product": "HUAWEI P20",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.333(C00E333R1P1T8)"
            }
          ]
        },
        {
          "product": "HUAWEI P20 Pro",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.333(C00E333R1P1T8)"
            }
          ]
        },
        {
          "product": "HUAWEI P30",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.193"
            }
          ]
        },
        {
          "product": "HUAWEI P30 Pro",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.186(C00E180R2P1)"
            }
          ]
        },
        {
          "product": "HUAWEI Y9 2019",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.220(C605E3R1P1T8)"
            }
          ]
        },
        {
          "product": "HUAWEI nova lite 3",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.305(C635E8R2P2)"
            }
          ]
        },
        {
          "product": "Honor 10 Lite",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.283(C605E8R2P2)"
            }
          ]
        },
        {
          "product": "Honor 8X",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.221(C461E2R1P1T8)"
            }
          ]
        },
        {
          "product": "Honor View 20",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.238(C432E1R3P1)"
            }
          ]
        },
        {
          "product": "Jackman-L22",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.247(C636E2R4P1T8)"
            }
          ]
        },
        {
          "product": "Paris-L21B",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.331(C432E1R1P2T8)"
            }
          ]
        },
        {
          "product": "Paris-L21MEB",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.331(C185E4R1P3T8)"
            }
          ]
        },
        {
          "product": "Paris-L29B",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.331(C636E1R1P3T8)"
            }
          ]
        },
        {
          "product": "Sydney-AL00",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.212(C00E62R1P7T8)"
            }
          ]
        },
        {
          "product": "Sydney-L21",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.215(C432E1R1P1T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.213(C185E1R1P1T8)"
            }
          ]
        },
        {
          "product": "Sydney-L21BR",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.213(C185E1R1P2T8)"
            }
          ]
        },
        {
          "product": "Sydney-L22",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.258(C636E1R1P1T8)"
            }
          ]
        },
        {
          "product": "Sydney-L22BR",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.258(C636E1R1P1T8)"
            }
          ]
        },
        {
          "product": "SydneyM-AL00",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.228(C00E78R1P7T8)"
            }
          ]
        },
        {
          "product": "SydneyM-L01",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.215(C782E2R1P1T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.213(C185E1R1P1T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.270(C432E3R1P1T8)"
            }
          ]
        },
        {
          "product": "SydneyM-L03",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.217(C605E1R1P1T8)"
            }
          ]
        },
        {
          "product": "SydneyM-L21",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.221(C461E1R1P1T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.215(C432E4R1P1T8)"
            }
          ]
        },
        {
          "product": "SydneyM-L22",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.259(C185E1R1P2T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.220(C635E1R1P2T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.216(C569E1R1P1T8)"
            }
          ]
        },
        {
          "product": "SydneyM-L23",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.226(C605E2R1P1T8)"
            }
          ]
        },
        {
          "product": "Yale-L21A",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.154(C432E2R3P2)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.154(C461E2R2P1)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.154(C636E2R2P1)"
            }
          ]
        },
        {
          "product": "Honor 20",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.152(C00E150R5P1)"
            }
          ]
        },
        {
          "product": "Honor Magic2",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 10.0.0.187"
            }
          ]
        },
        {
          "product": "Honor V20",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.234(C00E234R4P3)"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "There are two denial of service vulnerabilities on some Huawei smartphones. An attacker may send specially crafted TD-SCDMA messages from a rogue base station to the affected devices. Due to insufficient input validation of two values when parsing the messages, successful exploit may cause device abnormal. This is 2 out of 2 vulnerabilities. Different than CVE-2020-5302. Affected products are: ALP-AL00B: earlier than 9.1.0.333(C00E333R2P1T8) ALP-L09: earlier than 9.1.0.300(C432E4R1P9T8) ALP-L29: earlier than 9.1.0.315(C636E5R1P13T8) BLA-L29C: earlier than 9.1.0.321(C636E4R1P14T8), earlier than 9.1.0.330(C432E6R1P12T8), earlier than 9.1.0.302(C635E4R1P13T8) Berkeley-AL20: earlier than 9.1.0.333(C00E333R2P1T8) Berkeley-L09: earlier than 9.1.0.350(C10E3R1P14T8), earlier than 9.1.0.351(C432E5R1P13T8), earlier than 9.1.0.350(C636E4R1P13T8) Charlotte-L09C: earlier than 9.1.0.311(C185E4R1P11T8), earlier than 9.1.0.345(C432E8R1P11T8) Charlotte-L29C: earlier than 9.1.0.325(C185E4R1P11T8), earlier than 9.1.0.335(C636E3R1P13T8), earlier than 9.1.0.345(C432E8R1P11T8), earlier than 9.1.0.336(C605E3R1P12T8) Columbia-AL10B: earlier than 9.1.0.333(C00E333R1P1T8) Columbia-L29D: earlier than 9.1.0.350(C461E3R1P11T8), earlier than 9.1.0.350(C185E3R1P12T8), earlier than 9.1.0.350(C10E5R1P14T8), earlier than 9.1.0.351(C432E5R1P13T8) Cornell-AL00A: earlier than 9.1.0.333(C00E333R1P1T8) Cornell-L29A: earlier than 9.1.0.328(C185E1R1P9T8), earlier than 9.1.0.328(C432E1R1P9T8), earlier than 9.1.0.330(C461E1R1P9T8), earlier than 9.1.0.328(C636E2R1P12T8) Emily-L09C: earlier than 9.1.0.336(C605E4R1P12T8), earlier than 9.1.0.311(C185E2R1P12T8), earlier than 9.1.0.345(C432E10R1P12T8) Emily-L29C: earlier than 9.1.0.311(C605E2R1P12T8), earlier than 9.1.0.311(C636E7R1P13T8), earlier than 9.1.0.311(C432E7R1P11T8) Ever-L29B: earlier than 9.1.0.311(C185E3R3P1), earlier than 9.1.0.310(C636E3R2P1), earlier than 9.1.0.310(C432E3R1P12) HUAWEI Mate 20: earlier than 9.1.0.131(C00E131R3P1) HUAWEI Mate 20 Pro: earlier than 9.1.0.310(C185E10R2P1) HUAWEI Mate 20 RS: earlier than 9.1.0.135(C786E133R3P1) HUAWEI Mate 20 X: earlier than 9.1.0.135(C00E133R2P1) HUAWEI P20: earlier than 9.1.0.333(C00E333R1P1T8) HUAWEI P20 Pro: earlier than 9.1.0.333(C00E333R1P1T8) HUAWEI P30: earlier than 9.1.0.193 HUAWEI P30 Pro: earlier than 9.1.0.186(C00E180R2P1) HUAWEI Y9 2019: earlier than 9.1.0.220(C605E3R1P1T8) HUAWEI nova lite 3: earlier than 9.1.0.305(C635E8R2P2) Honor 10 Lite: earlier than 9.1.0.283(C605E8R2P2) Honor 8X: earlier than 9.1.0.221(C461E2R1P1T8) Honor View 20: earlier than 9.1.0.238(C432E1R3P1) Jackman-L22: earlier than 9.1.0.247(C636E2R4P1T8) Paris-L21B: earlier than 9.1.0.331(C432E1R1P2T8) Paris-L21MEB: earlier than 9.1.0.331(C185E4R1P3T8) Paris-L29B: earlier than 9.1.0.331(C636E1R1P3T8) Sydney-AL00: earlier than 9.1.0.212(C00E62R1P7T8) Sydney-L21: earlier than 9.1.0.215(C432E1R1P1T8), earlier than 9.1.0.213(C185E1R1P1T8) Sydney-L21BR: earlier than 9.1.0.213(C185E1R1P2T8) Sydney-L22: earlier than 9.1.0.258(C636E1R1P1T8) Sydney-L22BR: earlier than 9.1.0.258(C636E1R1P1T8) SydneyM-AL00: earlier than 9.1.0.228(C00E78R1P7T8) SydneyM-L01: earlier than 9.1.0.215(C782E2R1P1T8), earlier than 9.1.0.213(C185E1R1P1T8), earlier than 9.1.0.270(C432E3R1P1T8) SydneyM-L03: earlier than 9.1.0.217(C605E1R1P1T8) SydneyM-L21: earlier than 9.1.0.221(C461E1R1P1T8), earlier than 9.1.0.215(C432E4R1P1T8) SydneyM-L22: earlier than 9.1.0.259(C185E1R1P2T8), earlier than 9.1.0.220(C635E1R1P2T8), earlier than 9.1.0.216(C569E1R1P1T8) SydneyM-L23: earlier than 9.1.0.226(C605E2R1P1T8) Yale-L21A: earlier than 9.1.0.154(C432E2R3P2), earlier than 9.1.0.154(C461E2R2P1), earlier than 9.1.0.154(C636E2R2P1) Honor 20: earlier than 9.1.0.152(C00E150R5P1) Honor Magic2: earlier than 10.0.0.187 Honor V20: earlier than 9.1.0.234(C00E234R4P3)"
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Denial of Service",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2020-04-27T20:01:02",
        "orgId": "25ac1063-e409-4190-8079-24548c77ea2e",
        "shortName": "huawei"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190814-01-mobile-en"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@huawei.com",
          "ID": "CVE-2019-5303",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "ALP-AL00B",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.333(C00E333R2P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "ALP-L09",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.300(C432E4R1P9T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "ALP-L29",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.315(C636E5R1P13T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "BLA-L29C",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.321(C636E4R1P14T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.330(C432E6R1P12T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.302(C635E4R1P13T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Berkeley-AL20",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.333(C00E333R2P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Berkeley-L09",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.350(C10E3R1P14T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.351(C432E5R1P13T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.350(C636E4R1P13T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Charlotte-L09C",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.311(C185E4R1P11T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.345(C432E8R1P11T8)"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Huawei"
              },
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Charlotte-L29C",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.325(C185E4R1P11T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.335(C636E3R1P13T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.345(C432E8R1P11T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.336(C605E3R1P12T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Columbia-AL10B",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.333(C00E333R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Columbia-L29D",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.350(C461E3R1P11T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.350(C185E3R1P12T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.350(C10E5R1P14T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.351(C432E5R1P13T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Cornell-AL00A",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.333(C00E333R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Cornell-L29A",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.328(C185E1R1P9T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.328(C432E1R1P9T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.330(C461E1R1P9T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.328(C636E2R1P12T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Emily-L09C",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.336(C605E4R1P12T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.311(C185E2R1P12T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.345(C432E10R1P12T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Emily-L29C",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.311(C605E2R1P12T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.311(C636E7R1P13T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.311(C432E7R1P11T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Ever-L29B",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.311(C185E3R3P1)"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Huawei"
              },
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "HUAWEI Mate 20",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.131(C00E131R3P1)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "HUAWEI Mate 20 Pro",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.310(C185E10R2P1)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "HUAWEI Mate 20 RS",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.135(C786E133R3P1)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "HUAWEI Mate 20 X",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.135(C00E133R2P1)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "HUAWEI P20",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.333(C00E333R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "HUAWEI P20 Pro",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.333(C00E333R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "HUAWEI P30",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.193"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "HUAWEI P30 Pro",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.186(C00E180R2P1)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "HUAWEI Y9 2019",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.220(C605E3R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "HUAWEI nova lite 3",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.305(C635E8R2P2)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Honor 10 Lite",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.283(C605E8R2P2)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Honor 8X",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.221(C461E2R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Honor View 20",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.238(C432E1R3P1)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Jackman-L22",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.247(C636E2R4P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Paris-L21B",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.331(C432E1R1P2T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Paris-L21MEB",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.331(C185E4R1P3T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Paris-L29B",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.331(C636E1R1P3T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Sydney-AL00",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.212(C00E62R1P7T8)"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Huawei"
              },
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Sydney-L21",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.215(C432E1R1P1T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.213(C185E1R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Sydney-L21BR",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.213(C185E1R1P2T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Sydney-L22",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.258(C636E1R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Sydney-L22BR",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.258(C636E1R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "SydneyM-AL00",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.228(C00E78R1P7T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "SydneyM-L01",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.215(C782E2R1P1T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.213(C185E1R1P1T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.270(C432E3R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "SydneyM-L03",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.217(C605E1R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "SydneyM-L21",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.221(C461E1R1P1T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.215(C432E4R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "SydneyM-L22",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.259(C185E1R1P2T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.220(C635E1R1P2T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.216(C569E1R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "SydneyM-L23",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.226(C605E2R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Yale-L21A",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.154(C432E2R3P2)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.154(C461E2R2P1)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.154(C636E2R2P1)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Honor 20",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.152(C00E150R5P1)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Honor Magic2",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 10.0.0.187"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Honor V20",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.234(C00E234R4P3)"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Huawei"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "There are two denial of service vulnerabilities on some Huawei smartphones. An attacker may send specially crafted TD-SCDMA messages from a rogue base station to the affected devices. Due to insufficient input validation of two values when parsing the messages, successful exploit may cause device abnormal. This is 2 out of 2 vulnerabilities. Different than CVE-2020-5302. Affected products are: ALP-AL00B: earlier than 9.1.0.333(C00E333R2P1T8) ALP-L09: earlier than 9.1.0.300(C432E4R1P9T8) ALP-L29: earlier than 9.1.0.315(C636E5R1P13T8) BLA-L29C: earlier than 9.1.0.321(C636E4R1P14T8), earlier than 9.1.0.330(C432E6R1P12T8), earlier than 9.1.0.302(C635E4R1P13T8) Berkeley-AL20: earlier than 9.1.0.333(C00E333R2P1T8) Berkeley-L09: earlier than 9.1.0.350(C10E3R1P14T8), earlier than 9.1.0.351(C432E5R1P13T8), earlier than 9.1.0.350(C636E4R1P13T8) Charlotte-L09C: earlier than 9.1.0.311(C185E4R1P11T8), earlier than 9.1.0.345(C432E8R1P11T8) Charlotte-L29C: earlier than 9.1.0.325(C185E4R1P11T8), earlier than 9.1.0.335(C636E3R1P13T8), earlier than 9.1.0.345(C432E8R1P11T8), earlier than 9.1.0.336(C605E3R1P12T8) Columbia-AL10B: earlier than 9.1.0.333(C00E333R1P1T8) Columbia-L29D: earlier than 9.1.0.350(C461E3R1P11T8), earlier than 9.1.0.350(C185E3R1P12T8), earlier than 9.1.0.350(C10E5R1P14T8), earlier than 9.1.0.351(C432E5R1P13T8) Cornell-AL00A: earlier than 9.1.0.333(C00E333R1P1T8) Cornell-L29A: earlier than 9.1.0.328(C185E1R1P9T8), earlier than 9.1.0.328(C432E1R1P9T8), earlier than 9.1.0.330(C461E1R1P9T8), earlier than 9.1.0.328(C636E2R1P12T8) Emily-L09C: earlier than 9.1.0.336(C605E4R1P12T8), earlier than 9.1.0.311(C185E2R1P12T8), earlier than 9.1.0.345(C432E10R1P12T8) Emily-L29C: earlier than 9.1.0.311(C605E2R1P12T8), earlier than 9.1.0.311(C636E7R1P13T8), earlier than 9.1.0.311(C432E7R1P11T8) Ever-L29B: earlier than 9.1.0.311(C185E3R3P1), earlier than 9.1.0.310(C636E3R2P1), earlier than 9.1.0.310(C432E3R1P12) HUAWEI Mate 20: earlier than 9.1.0.131(C00E131R3P1) HUAWEI Mate 20 Pro: earlier than 9.1.0.310(C185E10R2P1) HUAWEI Mate 20 RS: earlier than 9.1.0.135(C786E133R3P1) HUAWEI Mate 20 X: earlier than 9.1.0.135(C00E133R2P1) HUAWEI P20: earlier than 9.1.0.333(C00E333R1P1T8) HUAWEI P20 Pro: earlier than 9.1.0.333(C00E333R1P1T8) HUAWEI P30: earlier than 9.1.0.193 HUAWEI P30 Pro: earlier than 9.1.0.186(C00E180R2P1) HUAWEI Y9 2019: earlier than 9.1.0.220(C605E3R1P1T8) HUAWEI nova lite 3: earlier than 9.1.0.305(C635E8R2P2) Honor 10 Lite: earlier than 9.1.0.283(C605E8R2P2) Honor 8X: earlier than 9.1.0.221(C461E2R1P1T8) Honor View 20: earlier than 9.1.0.238(C432E1R3P1) Jackman-L22: earlier than 9.1.0.247(C636E2R4P1T8) Paris-L21B: earlier than 9.1.0.331(C432E1R1P2T8) Paris-L21MEB: earlier than 9.1.0.331(C185E4R1P3T8) Paris-L29B: earlier than 9.1.0.331(C636E1R1P3T8) Sydney-AL00: earlier than 9.1.0.212(C00E62R1P7T8) Sydney-L21: earlier than 9.1.0.215(C432E1R1P1T8), earlier than 9.1.0.213(C185E1R1P1T8) Sydney-L21BR: earlier than 9.1.0.213(C185E1R1P2T8) Sydney-L22: earlier than 9.1.0.258(C636E1R1P1T8) Sydney-L22BR: earlier than 9.1.0.258(C636E1R1P1T8) SydneyM-AL00: earlier than 9.1.0.228(C00E78R1P7T8) SydneyM-L01: earlier than 9.1.0.215(C782E2R1P1T8), earlier than 9.1.0.213(C185E1R1P1T8), earlier than 9.1.0.270(C432E3R1P1T8) SydneyM-L03: earlier than 9.1.0.217(C605E1R1P1T8) SydneyM-L21: earlier than 9.1.0.221(C461E1R1P1T8), earlier than 9.1.0.215(C432E4R1P1T8) SydneyM-L22: earlier than 9.1.0.259(C185E1R1P2T8), earlier than 9.1.0.220(C635E1R1P2T8), earlier than 9.1.0.216(C569E1R1P1T8) SydneyM-L23: earlier than 9.1.0.226(C605E2R1P1T8) Yale-L21A: earlier than 9.1.0.154(C432E2R3P2), earlier than 9.1.0.154(C461E2R2P1), earlier than 9.1.0.154(C636E2R2P1) Honor 20: earlier than 9.1.0.152(C00E150R5P1) Honor Magic2: earlier than 10.0.0.187 Honor V20: earlier than 9.1.0.234(C00E234R4P3)"
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Denial of Service"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190814-01-mobile-en",
              "refsource": "CONFIRM",
              "url": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190814-01-mobile-en"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "25ac1063-e409-4190-8079-24548c77ea2e",
    "assignerShortName": "huawei",
    "cveId": "CVE-2019-5303",
    "datePublished": "2020-04-27T20:01:02",
    "dateReserved": "2019-01-04T00:00:00",
    "dateUpdated": "2024-08-04T19:54:53.218Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2019-5302 (GCVE-0-2019-5302)

Vulnerability from nvd – Published: 2020-04-27 19:50 – Updated: 2024-08-04 19:54
VLAI?
Summary
There are two denial of service vulnerabilities on some Huawei smartphones. An attacker may send specially crafted TD-SCDMA messages from a rogue base station to the affected devices. Due to insufficient input validation of two values when parsing the messages, successful exploit may cause device abnormal. This is 1 out of 2 vulnerabilities. Different than CVE-2020-5303. Affected products are: ALP-AL00B: earlier than 9.1.0.333(C00E333R2P1T8) ALP-L09: earlier than 9.1.0.300(C432E4R1P9T8) ALP-L29: earlier than 9.1.0.315(C636E5R1P13T8) BLA-L29C: earlier than 9.1.0.321(C636E4R1P14T8), earlier than 9.1.0.330(C432E6R1P12T8), earlier than 9.1.0.302(C635E4R1P13T8) Berkeley-AL20: earlier than 9.1.0.333(C00E333R2P1T8) Berkeley-L09: earlier than 9.1.0.350(C10E3R1P14T8), earlier than 9.1.0.351(C432E5R1P13T8), earlier than 9.1.0.350(C636E4R1P13T8) Charlotte-L09C: earlier than 9.1.0.311(C185E4R1P11T8), earlier than 9.1.0.345(C432E8R1P11T8) Charlotte-L29C: earlier than 9.1.0.325(C185E4R1P11T8), earlier than 9.1.0.335(C636E3R1P13T8), earlier than 9.1.0.345(C432E8R1P11T8), earlier than 9.1.0.336(C605E3R1P12T8) Columbia-AL10B: earlier than 9.1.0.333(C00E333R1P1T8) Columbia-L29D: earlier than 9.1.0.350(C461E3R1P11T8), earlier than 9.1.0.350(C185E3R1P12T8), earlier than 9.1.0.350(C10E5R1P14T8), earlier than 9.1.0.351(C432E5R1P13T8) Cornell-AL00A: earlier than 9.1.0.333(C00E333R1P1T8) Cornell-L29A: earlier than 9.1.0.328(C185E1R1P9T8), earlier than 9.1.0.328(C432E1R1P9T8), earlier than 9.1.0.330(C461E1R1P9T8), earlier than 9.1.0.328(C636E2R1P12T8) Emily-L09C: earlier than 9.1.0.336(C605E4R1P12T8), earlier than 9.1.0.311(C185E2R1P12T8), earlier than 9.1.0.345(C432E10R1P12T8) Emily-L29C: earlier than 9.1.0.311(C605E2R1P12T8), earlier than 9.1.0.311(C636E7R1P13T8), earlier than 9.1.0.311(C432E7R1P11T8) Ever-L29B: earlier than 9.1.0.311(C185E3R3P1), earlier than 9.1.0.310(C636E3R2P1), earlier than 9.1.0.310(C432E3R1P12) HUAWEI Mate 20: earlier than 9.1.0.131(C00E131R3P1) HUAWEI Mate 20 Pro: earlier than 9.1.0.310(C185E10R2P1) HUAWEI Mate 20 RS: earlier than 9.1.0.135(C786E133R3P1) HUAWEI Mate 20 X: earlier than 9.1.0.135(C00E133R2P1) HUAWEI P20: earlier than 9.1.0.333(C00E333R1P1T8) HUAWEI P20 Pro: earlier than 9.1.0.333(C00E333R1P1T8) HUAWEI P30: earlier than 9.1.0.193 HUAWEI P30 Pro: earlier than 9.1.0.186(C00E180R2P1) HUAWEI Y9 2019: earlier than 9.1.0.220(C605E3R1P1T8) HUAWEI nova lite 3: earlier than 9.1.0.305(C635E8R2P2) Honor 10 Lite: earlier than 9.1.0.283(C605E8R2P2) Honor 8X: earlier than 9.1.0.221(C461E2R1P1T8) Honor View 20: earlier than 9.1.0.238(C432E1R3P1) Jackman-L22: earlier than 9.1.0.247(C636E2R4P1T8) Paris-L21B: earlier than 9.1.0.331(C432E1R1P2T8) Paris-L21MEB: earlier than 9.1.0.331(C185E4R1P3T8) Paris-L29B: earlier than 9.1.0.331(C636E1R1P3T8) Sydney-AL00: earlier than 9.1.0.212(C00E62R1P7T8) Sydney-L21: earlier than 9.1.0.215(C432E1R1P1T8), earlier than 9.1.0.213(C185E1R1P1T8) Sydney-L21BR: earlier than 9.1.0.213(C185E1R1P2T8) Sydney-L22: earlier than 9.1.0.258(C636E1R1P1T8) Sydney-L22BR: earlier than 9.1.0.258(C636E1R1P1T8) SydneyM-AL00: earlier than 9.1.0.228(C00E78R1P7T8) SydneyM-L01: earlier than 9.1.0.215(C782E2R1P1T8), earlier than 9.1.0.213(C185E1R1P1T8), earlier than 9.1.0.270(C432E3R1P1T8) SydneyM-L03: earlier than 9.1.0.217(C605E1R1P1T8) SydneyM-L21: earlier than 9.1.0.221(C461E1R1P1T8), earlier than 9.1.0.215(C432E4R1P1T8) SydneyM-L22: earlier than 9.1.0.259(C185E1R1P2T8), earlier than 9.1.0.220(C635E1R1P2T8), earlier than 9.1.0.216(C569E1R1P1T8) SydneyM-L23: earlier than 9.1.0.226(C605E2R1P1T8) Yale-L21A: earlier than 9.1.0.154(C432E2R3P2), earlier than 9.1.0.154(C461E2R2P1), earlier than 9.1.0.154(C636E2R2P1) Honor 20: earlier than 9.1.0.152(C00E150R5P1) Honor Magic2: earlier than 10.0.0.187 Honor V20: earlier than 9.1.0.234(C00E234R4P3)
Severity ?
No CVSS data available.
CWE
  • Denial of Service
Assigner
References
Impacted products
Vendor Product Version
Huawei Sydney-L21 Affected: Versions earlier than 9.1.0.215(C432E1R1P1T8)
Affected: Versions earlier than 9.1.0.213(C185E1R1P1T8)
Create a notification for this product.
    Huawei Sydney-L21BR Affected: Versions earlier than 9.1.0.213(C185E1R1P2T8)
Create a notification for this product.
    Huawei Sydney-L22 Affected: Versions earlier than 9.1.0.258(C636E1R1P1T8)
Create a notification for this product.
    Huawei Sydney-L22BR Affected: Versions earlier than 9.1.0.258(C636E1R1P1T8)
Create a notification for this product.
    Huawei SydneyM-AL00 Affected: Versions earlier than 9.1.0.228(C00E78R1P7T8)
Create a notification for this product.
    Huawei SydneyM-L01 Affected: Versions earlier than 9.1.0.215(C782E2R1P1T8)
Affected: Versions earlier than 9.1.0.213(C185E1R1P1T8)
Affected: Versions earlier than 9.1.0.270(C432E3R1P1T8)
Create a notification for this product.
    Huawei SydneyM-L03 Affected: Versions earlier than 9.1.0.217(C605E1R1P1T8)
Create a notification for this product.
    Huawei SydneyM-L21 Affected: Versions earlier than 9.1.0.221(C461E1R1P1T8)
Affected: Versions earlier than 9.1.0.215(C432E4R1P1T8)
Create a notification for this product.
    Huawei SydneyM-L22 Affected: Versions earlier than 9.1.0.259(C185E1R1P2T8)
Affected: Versions earlier than 9.1.0.220(C635E1R1P2T8)
Affected: Versions earlier than 9.1.0.216(C569E1R1P1T8)
Create a notification for this product.
    Huawei SydneyM-L23 Affected: Versions earlier than 9.1.0.226(C605E2R1P1T8)
Create a notification for this product.
    Huawei Yale-L21A Affected: Versions earlier than 9.1.0.154(C432E2R3P2)
Affected: Versions earlier than 9.1.0.154(C461E2R2P1)
Affected: Versions earlier than 9.1.0.154(C636E2R2P1)
Create a notification for this product.
    Huawei Honor 20 Affected: Versions earlier than 9.1.0.152(C00E150R5P1)
Create a notification for this product.
    Huawei Honor Magic2 Affected: Versions earlier than 10.0.0.187
Create a notification for this product.
    Huawei Honor V20 Affected: Versions earlier than 9.1.0.234(C00E234R4P3)
Create a notification for this product.
    Huawei HUAWEI Mate 20 Affected: Versions earlier than 9.1.0.131(C00E131R3P1)
Create a notification for this product.
    Huawei HUAWEI Mate 20 Pro Affected: Versions earlier than 9.1.0.310(C185E10R2P1)
Create a notification for this product.
    Huawei HUAWEI Mate 20 RS Affected: Versions earlier than 9.1.0.135(C786E133R3P1)
Create a notification for this product.
    Huawei HUAWEI Mate 20 X Affected: Versions earlier than 9.1.0.135(C00E133R2P1)
Create a notification for this product.
    Huawei HUAWEI P20 Affected: Versions earlier than 9.1.0.333(C00E333R1P1T8)
Create a notification for this product.
    Huawei HUAWEI P20 Pro Affected: Versions earlier than 9.1.0.333(C00E333R1P1T8)
Create a notification for this product.
    Huawei HUAWEI P30 Affected: Versions earlier than 9.1.0.193
Create a notification for this product.
    Huawei HUAWEI P30 Pro Affected: Versions earlier than 9.1.0.186(C00E180R2P1)
Create a notification for this product.
    Huawei HUAWEI Y9 2019 Affected: Versions earlier than 9.1.0.220(C605E3R1P1T8)
Create a notification for this product.
    Huawei HUAWEI nova lite 3 Affected: Versions earlier than 9.1.0.305(C635E8R2P2)
Create a notification for this product.
    Huawei Honor 10 Lite Affected: Versions earlier than 9.1.0.283(C605E8R2P2)
Create a notification for this product.
    Huawei Honor 8X Affected: Versions earlier than 9.1.0.221(C461E2R1P1T8)
Create a notification for this product.
    Huawei Honor View 20 Affected: Versions earlier than 9.1.0.238(C432E1R3P1)
Create a notification for this product.
    Huawei Jackman-L22 Affected: Versions earlier than 9.1.0.247(C636E2R4P1T8)
Create a notification for this product.
    Huawei Paris-L21B Affected: Versions earlier than 9.1.0.331(C432E1R1P2T8)
Create a notification for this product.
    Huawei Paris-L21MEB Affected: Versions earlier than 9.1.0.331(C185E4R1P3T8)
Create a notification for this product.
    Huawei Paris-L29B Affected: Versions earlier than 9.1.0.331(C636E1R1P3T8)
Create a notification for this product.
    Huawei Sydney-AL00 Affected: Versions earlier than 9.1.0.212(C00E62R1P7T8)
Create a notification for this product.
    Huawei Charlotte-L29C Affected: Versions earlier than 9.1.0.325(C185E4R1P11T8)
Affected: Versions earlier than 9.1.0.335(C636E3R1P13T8)
Affected: Versions earlier than 9.1.0.345(C432E8R1P11T8)
Affected: Versions earlier than 9.1.0.336(C605E3R1P12T8)
Create a notification for this product.
    Huawei Columbia-AL10B Affected: Versions earlier than 9.1.0.333(C00E333R1P1T8)
Create a notification for this product.
    Huawei Columbia-L29D Affected: Versions earlier than 9.1.0.350(C461E3R1P11T8)
Affected: Versions earlier than 9.1.0.350(C185E3R1P12T8)
Affected: Versions earlier than 9.1.0.350(C10E5R1P14T8)
Affected: Versions earlier than 9.1.0.351(C432E5R1P13T8)
Create a notification for this product.
    Huawei Cornell-AL00A Affected: Versions earlier than 9.1.0.333(C00E333R1P1T8)
Create a notification for this product.
    Huawei Cornell-L29A Affected: Versions earlier than 9.1.0.328(C185E1R1P9T8)
Affected: Versions earlier than 9.1.0.328(C432E1R1P9T8)
Affected: Versions earlier than 9.1.0.330(C461E1R1P9T8)
Affected: Versions earlier than 9.1.0.328(C636E2R1P12T8)
Create a notification for this product.
    Huawei Emily-L09C Affected: Versions earlier than 9.1.0.336(C605E4R1P12T8)
Affected: Versions earlier than 9.1.0.311(C185E2R1P12T8)
Affected: Versions earlier than 9.1.0.345(C432E10R1P12T8)
Create a notification for this product.
    Huawei Emily-L29C Affected: Versions earlier than 9.1.0.311(C605E2R1P12T8)
Affected: Versions earlier than 9.1.0.311(C636E7R1P13T8)
Affected: Versions earlier than 9.1.0.311(C432E7R1P11T8)
Create a notification for this product.
    Huawei Ever-L29B Affected: Versions earlier than 9.1.0.311(C185E3R3P1)
Create a notification for this product.
    Huawei ALP-AL00B Affected: Versions earlier than 9.1.0.333(C00E333R2P1T8)
Create a notification for this product.
    Huawei ALP-L09 Affected: Versions earlier than 9.1.0.300(C432E4R1P9T8)
Create a notification for this product.
    Huawei ALP-L29 Affected: Versions earlier than 9.1.0.315(C636E5R1P13T8)
Create a notification for this product.
    Huawei BLA-L29C Affected: Versions earlier than 9.1.0.321(C636E4R1P14T8)
Affected: Versions earlier than 9.1.0.330(C432E6R1P12T8)
Affected: Versions earlier than 9.1.0.302(C635E4R1P13T8)
Create a notification for this product.
    Huawei Berkeley-AL20 Affected: Versions earlier than 9.1.0.333(C00E333R2P1T8)
Create a notification for this product.
    Huawei Berkeley-L09 Affected: Versions earlier than 9.1.0.350(C10E3R1P14T8)
Affected: Versions earlier than 9.1.0.351(C432E5R1P13T8)
Affected: Versions earlier than 9.1.0.350(C636E4R1P13T8)
Create a notification for this product.
    Huawei Charlotte-L09C Affected: Versions earlier than 9.1.0.311(C185E4R1P11T8)
Affected: Versions earlier than 9.1.0.345(C432E8R1P11T8)
Create a notification for this product.
Show details on NVD website
To clipboard 

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T19:54:52.990Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190814-01-mobile-en"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Sydney-L21",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.215(C432E1R1P1T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.213(C185E1R1P1T8)"
            }
          ]
        },
        {
          "product": "Sydney-L21BR",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.213(C185E1R1P2T8)"
            }
          ]
        },
        {
          "product": "Sydney-L22",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.258(C636E1R1P1T8)"
            }
          ]
        },
        {
          "product": "Sydney-L22BR",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.258(C636E1R1P1T8)"
            }
          ]
        },
        {
          "product": "SydneyM-AL00",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.228(C00E78R1P7T8)"
            }
          ]
        },
        {
          "product": "SydneyM-L01",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.215(C782E2R1P1T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.213(C185E1R1P1T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.270(C432E3R1P1T8)"
            }
          ]
        },
        {
          "product": "SydneyM-L03",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.217(C605E1R1P1T8)"
            }
          ]
        },
        {
          "product": "SydneyM-L21",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.221(C461E1R1P1T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.215(C432E4R1P1T8)"
            }
          ]
        },
        {
          "product": "SydneyM-L22",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.259(C185E1R1P2T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.220(C635E1R1P2T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.216(C569E1R1P1T8)"
            }
          ]
        },
        {
          "product": "SydneyM-L23",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.226(C605E2R1P1T8)"
            }
          ]
        },
        {
          "product": "Yale-L21A",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.154(C432E2R3P2)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.154(C461E2R2P1)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.154(C636E2R2P1)"
            }
          ]
        },
        {
          "product": "Honor 20",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.152(C00E150R5P1)"
            }
          ]
        },
        {
          "product": "Honor Magic2",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 10.0.0.187"
            }
          ]
        },
        {
          "product": "Honor V20",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.234(C00E234R4P3)"
            }
          ]
        },
        {
          "product": "HUAWEI Mate 20",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.131(C00E131R3P1)"
            }
          ]
        },
        {
          "product": "HUAWEI Mate 20 Pro",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.310(C185E10R2P1)"
            }
          ]
        },
        {
          "product": "HUAWEI Mate 20 RS",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.135(C786E133R3P1)"
            }
          ]
        },
        {
          "product": "HUAWEI Mate 20 X",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.135(C00E133R2P1)"
            }
          ]
        },
        {
          "product": "HUAWEI P20",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.333(C00E333R1P1T8)"
            }
          ]
        },
        {
          "product": "HUAWEI P20 Pro",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.333(C00E333R1P1T8)"
            }
          ]
        },
        {
          "product": "HUAWEI P30",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.193"
            }
          ]
        },
        {
          "product": "HUAWEI P30 Pro",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.186(C00E180R2P1)"
            }
          ]
        },
        {
          "product": "HUAWEI Y9 2019",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.220(C605E3R1P1T8)"
            }
          ]
        },
        {
          "product": "HUAWEI nova lite 3",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.305(C635E8R2P2)"
            }
          ]
        },
        {
          "product": "Honor 10 Lite",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.283(C605E8R2P2)"
            }
          ]
        },
        {
          "product": "Honor 8X",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.221(C461E2R1P1T8)"
            }
          ]
        },
        {
          "product": "Honor View 20",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.238(C432E1R3P1)"
            }
          ]
        },
        {
          "product": "Jackman-L22",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.247(C636E2R4P1T8)"
            }
          ]
        },
        {
          "product": "Paris-L21B",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.331(C432E1R1P2T8)"
            }
          ]
        },
        {
          "product": "Paris-L21MEB",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.331(C185E4R1P3T8)"
            }
          ]
        },
        {
          "product": "Paris-L29B",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.331(C636E1R1P3T8)"
            }
          ]
        },
        {
          "product": "Sydney-AL00",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.212(C00E62R1P7T8)"
            }
          ]
        },
        {
          "product": "Charlotte-L29C",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.325(C185E4R1P11T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.335(C636E3R1P13T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.345(C432E8R1P11T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.336(C605E3R1P12T8)"
            }
          ]
        },
        {
          "product": "Columbia-AL10B",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.333(C00E333R1P1T8)"
            }
          ]
        },
        {
          "product": "Columbia-L29D",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.350(C461E3R1P11T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.350(C185E3R1P12T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.350(C10E5R1P14T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.351(C432E5R1P13T8)"
            }
          ]
        },
        {
          "product": "Cornell-AL00A",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.333(C00E333R1P1T8)"
            }
          ]
        },
        {
          "product": "Cornell-L29A",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.328(C185E1R1P9T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.328(C432E1R1P9T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.330(C461E1R1P9T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.328(C636E2R1P12T8)"
            }
          ]
        },
        {
          "product": "Emily-L09C",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.336(C605E4R1P12T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.311(C185E2R1P12T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.345(C432E10R1P12T8)"
            }
          ]
        },
        {
          "product": "Emily-L29C",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.311(C605E2R1P12T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.311(C636E7R1P13T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.311(C432E7R1P11T8)"
            }
          ]
        },
        {
          "product": "Ever-L29B",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.311(C185E3R3P1)"
            }
          ]
        },
        {
          "product": "ALP-AL00B",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.333(C00E333R2P1T8)"
            }
          ]
        },
        {
          "product": "ALP-L09",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.300(C432E4R1P9T8)"
            }
          ]
        },
        {
          "product": "ALP-L29",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.315(C636E5R1P13T8)"
            }
          ]
        },
        {
          "product": "BLA-L29C",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.321(C636E4R1P14T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.330(C432E6R1P12T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.302(C635E4R1P13T8)"
            }
          ]
        },
        {
          "product": "Berkeley-AL20",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.333(C00E333R2P1T8)"
            }
          ]
        },
        {
          "product": "Berkeley-L09",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.350(C10E3R1P14T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.351(C432E5R1P13T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.350(C636E4R1P13T8)"
            }
          ]
        },
        {
          "product": "Charlotte-L09C",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.311(C185E4R1P11T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.345(C432E8R1P11T8)"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "There are two denial of service vulnerabilities on some Huawei smartphones. An attacker may send specially crafted TD-SCDMA messages from a rogue base station to the affected devices. Due to insufficient input validation of two values when parsing the messages, successful exploit may cause device abnormal. This is 1 out of 2 vulnerabilities. Different than CVE-2020-5303. Affected products are: ALP-AL00B: earlier than 9.1.0.333(C00E333R2P1T8) ALP-L09: earlier than 9.1.0.300(C432E4R1P9T8) ALP-L29: earlier than 9.1.0.315(C636E5R1P13T8) BLA-L29C: earlier than 9.1.0.321(C636E4R1P14T8), earlier than 9.1.0.330(C432E6R1P12T8), earlier than 9.1.0.302(C635E4R1P13T8) Berkeley-AL20: earlier than 9.1.0.333(C00E333R2P1T8) Berkeley-L09: earlier than 9.1.0.350(C10E3R1P14T8), earlier than 9.1.0.351(C432E5R1P13T8), earlier than 9.1.0.350(C636E4R1P13T8) Charlotte-L09C: earlier than 9.1.0.311(C185E4R1P11T8), earlier than 9.1.0.345(C432E8R1P11T8) Charlotte-L29C: earlier than 9.1.0.325(C185E4R1P11T8), earlier than 9.1.0.335(C636E3R1P13T8), earlier than 9.1.0.345(C432E8R1P11T8), earlier than 9.1.0.336(C605E3R1P12T8) Columbia-AL10B: earlier than 9.1.0.333(C00E333R1P1T8) Columbia-L29D: earlier than 9.1.0.350(C461E3R1P11T8), earlier than 9.1.0.350(C185E3R1P12T8), earlier than 9.1.0.350(C10E5R1P14T8), earlier than 9.1.0.351(C432E5R1P13T8) Cornell-AL00A: earlier than 9.1.0.333(C00E333R1P1T8) Cornell-L29A: earlier than 9.1.0.328(C185E1R1P9T8), earlier than 9.1.0.328(C432E1R1P9T8), earlier than 9.1.0.330(C461E1R1P9T8), earlier than 9.1.0.328(C636E2R1P12T8) Emily-L09C: earlier than 9.1.0.336(C605E4R1P12T8), earlier than 9.1.0.311(C185E2R1P12T8), earlier than 9.1.0.345(C432E10R1P12T8) Emily-L29C: earlier than 9.1.0.311(C605E2R1P12T8), earlier than 9.1.0.311(C636E7R1P13T8), earlier than 9.1.0.311(C432E7R1P11T8) Ever-L29B: earlier than 9.1.0.311(C185E3R3P1), earlier than 9.1.0.310(C636E3R2P1), earlier than 9.1.0.310(C432E3R1P12) HUAWEI Mate 20: earlier than 9.1.0.131(C00E131R3P1) HUAWEI Mate 20 Pro: earlier than 9.1.0.310(C185E10R2P1) HUAWEI Mate 20 RS: earlier than 9.1.0.135(C786E133R3P1) HUAWEI Mate 20 X: earlier than 9.1.0.135(C00E133R2P1) HUAWEI P20: earlier than 9.1.0.333(C00E333R1P1T8) HUAWEI P20 Pro: earlier than 9.1.0.333(C00E333R1P1T8) HUAWEI P30: earlier than 9.1.0.193 HUAWEI P30 Pro: earlier than 9.1.0.186(C00E180R2P1) HUAWEI Y9 2019: earlier than 9.1.0.220(C605E3R1P1T8) HUAWEI nova lite 3: earlier than 9.1.0.305(C635E8R2P2) Honor 10 Lite: earlier than 9.1.0.283(C605E8R2P2) Honor 8X: earlier than 9.1.0.221(C461E2R1P1T8) Honor View 20: earlier than 9.1.0.238(C432E1R3P1) Jackman-L22: earlier than 9.1.0.247(C636E2R4P1T8) Paris-L21B: earlier than 9.1.0.331(C432E1R1P2T8) Paris-L21MEB: earlier than 9.1.0.331(C185E4R1P3T8) Paris-L29B: earlier than 9.1.0.331(C636E1R1P3T8) Sydney-AL00: earlier than 9.1.0.212(C00E62R1P7T8) Sydney-L21: earlier than 9.1.0.215(C432E1R1P1T8), earlier than 9.1.0.213(C185E1R1P1T8) Sydney-L21BR: earlier than 9.1.0.213(C185E1R1P2T8) Sydney-L22: earlier than 9.1.0.258(C636E1R1P1T8) Sydney-L22BR: earlier than 9.1.0.258(C636E1R1P1T8) SydneyM-AL00: earlier than 9.1.0.228(C00E78R1P7T8) SydneyM-L01: earlier than 9.1.0.215(C782E2R1P1T8), earlier than 9.1.0.213(C185E1R1P1T8), earlier than 9.1.0.270(C432E3R1P1T8) SydneyM-L03: earlier than 9.1.0.217(C605E1R1P1T8) SydneyM-L21: earlier than 9.1.0.221(C461E1R1P1T8), earlier than 9.1.0.215(C432E4R1P1T8) SydneyM-L22: earlier than 9.1.0.259(C185E1R1P2T8), earlier than 9.1.0.220(C635E1R1P2T8), earlier than 9.1.0.216(C569E1R1P1T8) SydneyM-L23: earlier than 9.1.0.226(C605E2R1P1T8) Yale-L21A: earlier than 9.1.0.154(C432E2R3P2), earlier than 9.1.0.154(C461E2R2P1), earlier than 9.1.0.154(C636E2R2P1) Honor 20: earlier than 9.1.0.152(C00E150R5P1) Honor Magic2: earlier than 10.0.0.187 Honor V20: earlier than 9.1.0.234(C00E234R4P3)"
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Denial of Service",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2020-04-27T19:50:50",
        "orgId": "25ac1063-e409-4190-8079-24548c77ea2e",
        "shortName": "huawei"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190814-01-mobile-en"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@huawei.com",
          "ID": "CVE-2019-5302",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Sydney-L21",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.215(C432E1R1P1T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.213(C185E1R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Sydney-L21BR",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.213(C185E1R1P2T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Sydney-L22",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.258(C636E1R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Sydney-L22BR",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.258(C636E1R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "SydneyM-AL00",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.228(C00E78R1P7T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "SydneyM-L01",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.215(C782E2R1P1T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.213(C185E1R1P1T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.270(C432E3R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "SydneyM-L03",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.217(C605E1R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "SydneyM-L21",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.221(C461E1R1P1T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.215(C432E4R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "SydneyM-L22",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.259(C185E1R1P2T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.220(C635E1R1P2T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.216(C569E1R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "SydneyM-L23",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.226(C605E2R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Yale-L21A",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.154(C432E2R3P2)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.154(C461E2R2P1)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.154(C636E2R2P1)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Honor 20",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.152(C00E150R5P1)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Honor Magic2",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 10.0.0.187"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Honor V20",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.234(C00E234R4P3)"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Huawei"
              },
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "HUAWEI Mate 20",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.131(C00E131R3P1)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "HUAWEI Mate 20 Pro",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.310(C185E10R2P1)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "HUAWEI Mate 20 RS",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.135(C786E133R3P1)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "HUAWEI Mate 20 X",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.135(C00E133R2P1)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "HUAWEI P20",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.333(C00E333R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "HUAWEI P20 Pro",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.333(C00E333R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "HUAWEI P30",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.193"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "HUAWEI P30 Pro",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.186(C00E180R2P1)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "HUAWEI Y9 2019",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.220(C605E3R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "HUAWEI nova lite 3",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.305(C635E8R2P2)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Honor 10 Lite",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.283(C605E8R2P2)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Honor 8X",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.221(C461E2R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Honor View 20",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.238(C432E1R3P1)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Jackman-L22",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.247(C636E2R4P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Paris-L21B",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.331(C432E1R1P2T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Paris-L21MEB",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.331(C185E4R1P3T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Paris-L29B",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.331(C636E1R1P3T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Sydney-AL00",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.212(C00E62R1P7T8)"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Huawei"
              },
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Charlotte-L29C",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.325(C185E4R1P11T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.335(C636E3R1P13T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.345(C432E8R1P11T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.336(C605E3R1P12T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Columbia-AL10B",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.333(C00E333R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Columbia-L29D",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.350(C461E3R1P11T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.350(C185E3R1P12T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.350(C10E5R1P14T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.351(C432E5R1P13T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Cornell-AL00A",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.333(C00E333R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Cornell-L29A",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.328(C185E1R1P9T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.328(C432E1R1P9T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.330(C461E1R1P9T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.328(C636E2R1P12T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Emily-L09C",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.336(C605E4R1P12T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.311(C185E2R1P12T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.345(C432E10R1P12T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Emily-L29C",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.311(C605E2R1P12T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.311(C636E7R1P13T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.311(C432E7R1P11T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Ever-L29B",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.311(C185E3R3P1)"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Huawei"
              },
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "ALP-AL00B",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.333(C00E333R2P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "ALP-L09",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.300(C432E4R1P9T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "ALP-L29",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.315(C636E5R1P13T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "BLA-L29C",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.321(C636E4R1P14T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.330(C432E6R1P12T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.302(C635E4R1P13T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Berkeley-AL20",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.333(C00E333R2P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Berkeley-L09",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.350(C10E3R1P14T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.351(C432E5R1P13T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.350(C636E4R1P13T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Charlotte-L09C",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.311(C185E4R1P11T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.345(C432E8R1P11T8)"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Huawei"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "There are two denial of service vulnerabilities on some Huawei smartphones. An attacker may send specially crafted TD-SCDMA messages from a rogue base station to the affected devices. Due to insufficient input validation of two values when parsing the messages, successful exploit may cause device abnormal. This is 1 out of 2 vulnerabilities. Different than CVE-2020-5303. Affected products are: ALP-AL00B: earlier than 9.1.0.333(C00E333R2P1T8) ALP-L09: earlier than 9.1.0.300(C432E4R1P9T8) ALP-L29: earlier than 9.1.0.315(C636E5R1P13T8) BLA-L29C: earlier than 9.1.0.321(C636E4R1P14T8), earlier than 9.1.0.330(C432E6R1P12T8), earlier than 9.1.0.302(C635E4R1P13T8) Berkeley-AL20: earlier than 9.1.0.333(C00E333R2P1T8) Berkeley-L09: earlier than 9.1.0.350(C10E3R1P14T8), earlier than 9.1.0.351(C432E5R1P13T8), earlier than 9.1.0.350(C636E4R1P13T8) Charlotte-L09C: earlier than 9.1.0.311(C185E4R1P11T8), earlier than 9.1.0.345(C432E8R1P11T8) Charlotte-L29C: earlier than 9.1.0.325(C185E4R1P11T8), earlier than 9.1.0.335(C636E3R1P13T8), earlier than 9.1.0.345(C432E8R1P11T8), earlier than 9.1.0.336(C605E3R1P12T8) Columbia-AL10B: earlier than 9.1.0.333(C00E333R1P1T8) Columbia-L29D: earlier than 9.1.0.350(C461E3R1P11T8), earlier than 9.1.0.350(C185E3R1P12T8), earlier than 9.1.0.350(C10E5R1P14T8), earlier than 9.1.0.351(C432E5R1P13T8) Cornell-AL00A: earlier than 9.1.0.333(C00E333R1P1T8) Cornell-L29A: earlier than 9.1.0.328(C185E1R1P9T8), earlier than 9.1.0.328(C432E1R1P9T8), earlier than 9.1.0.330(C461E1R1P9T8), earlier than 9.1.0.328(C636E2R1P12T8) Emily-L09C: earlier than 9.1.0.336(C605E4R1P12T8), earlier than 9.1.0.311(C185E2R1P12T8), earlier than 9.1.0.345(C432E10R1P12T8) Emily-L29C: earlier than 9.1.0.311(C605E2R1P12T8), earlier than 9.1.0.311(C636E7R1P13T8), earlier than 9.1.0.311(C432E7R1P11T8) Ever-L29B: earlier than 9.1.0.311(C185E3R3P1), earlier than 9.1.0.310(C636E3R2P1), earlier than 9.1.0.310(C432E3R1P12) HUAWEI Mate 20: earlier than 9.1.0.131(C00E131R3P1) HUAWEI Mate 20 Pro: earlier than 9.1.0.310(C185E10R2P1) HUAWEI Mate 20 RS: earlier than 9.1.0.135(C786E133R3P1) HUAWEI Mate 20 X: earlier than 9.1.0.135(C00E133R2P1) HUAWEI P20: earlier than 9.1.0.333(C00E333R1P1T8) HUAWEI P20 Pro: earlier than 9.1.0.333(C00E333R1P1T8) HUAWEI P30: earlier than 9.1.0.193 HUAWEI P30 Pro: earlier than 9.1.0.186(C00E180R2P1) HUAWEI Y9 2019: earlier than 9.1.0.220(C605E3R1P1T8) HUAWEI nova lite 3: earlier than 9.1.0.305(C635E8R2P2) Honor 10 Lite: earlier than 9.1.0.283(C605E8R2P2) Honor 8X: earlier than 9.1.0.221(C461E2R1P1T8) Honor View 20: earlier than 9.1.0.238(C432E1R3P1) Jackman-L22: earlier than 9.1.0.247(C636E2R4P1T8) Paris-L21B: earlier than 9.1.0.331(C432E1R1P2T8) Paris-L21MEB: earlier than 9.1.0.331(C185E4R1P3T8) Paris-L29B: earlier than 9.1.0.331(C636E1R1P3T8) Sydney-AL00: earlier than 9.1.0.212(C00E62R1P7T8) Sydney-L21: earlier than 9.1.0.215(C432E1R1P1T8), earlier than 9.1.0.213(C185E1R1P1T8) Sydney-L21BR: earlier than 9.1.0.213(C185E1R1P2T8) Sydney-L22: earlier than 9.1.0.258(C636E1R1P1T8) Sydney-L22BR: earlier than 9.1.0.258(C636E1R1P1T8) SydneyM-AL00: earlier than 9.1.0.228(C00E78R1P7T8) SydneyM-L01: earlier than 9.1.0.215(C782E2R1P1T8), earlier than 9.1.0.213(C185E1R1P1T8), earlier than 9.1.0.270(C432E3R1P1T8) SydneyM-L03: earlier than 9.1.0.217(C605E1R1P1T8) SydneyM-L21: earlier than 9.1.0.221(C461E1R1P1T8), earlier than 9.1.0.215(C432E4R1P1T8) SydneyM-L22: earlier than 9.1.0.259(C185E1R1P2T8), earlier than 9.1.0.220(C635E1R1P2T8), earlier than 9.1.0.216(C569E1R1P1T8) SydneyM-L23: earlier than 9.1.0.226(C605E2R1P1T8) Yale-L21A: earlier than 9.1.0.154(C432E2R3P2), earlier than 9.1.0.154(C461E2R2P1), earlier than 9.1.0.154(C636E2R2P1) Honor 20: earlier than 9.1.0.152(C00E150R5P1) Honor Magic2: earlier than 10.0.0.187 Honor V20: earlier than 9.1.0.234(C00E234R4P3)"
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Denial of Service"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190814-01-mobile-en",
              "refsource": "CONFIRM",
              "url": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190814-01-mobile-en"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "25ac1063-e409-4190-8079-24548c77ea2e",
    "assignerShortName": "huawei",
    "cveId": "CVE-2019-5302",
    "datePublished": "2020-04-27T19:50:50",
    "dateReserved": "2019-01-04T00:00:00",
    "dateUpdated": "2024-08-04T19:54:52.990Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2019-2215 (GCVE-0-2019-2215)

Vulnerability from nvd – Published: 2019-10-11 18:16 – Updated: 2025-10-21 23:45
VLAI?
Summary
A use-after-free in binder.c allows an elevation of privilege from an application to the Linux Kernel. No user interaction is required to exploit this vulnerability, however exploitation does require either the installation of a malicious local application or a separate vulnerability in a network facing application.Product: AndroidAndroid ID: A-141720095
Severity ?
7.8 (High)
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CWE
  • Elevation of privilege
Assigner
References
Impacted products
Vendor Product Version
n/a Android Affected: Kernel
Show details on NVD website
To clipboard 

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T18:42:50.933Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://source.android.com/security/bulletin/2019-10-01"
          },
          {
            "name": "20191018 CVE 2019-2215 Android Binder Use After Free",
            "tags": [
              "mailing-list",
              "x_refsource_FULLDISC",
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2019/Oct/38"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://packetstormsecurity.com/files/154911/Android-Binder-Use-After-Free.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191030-01-binder-en"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20191031-0005/"
          },
          {
            "name": "20191108 [slackware-security] Slackware 14.2 kernel (SSA:2019-311-01)",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "https://seclists.org/bugtraq/2019/Nov/11"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://packetstormsecurity.com/files/155212/Slackware-Security-Advisory-Slackware-14.2-kernel-Updates.html"
          },
          {
            "name": "USN-4186-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/4186-1/"
          },
          {
            "name": "[debian-lts-announce] 20200118 [SECURITY] [DLA 2068-1] linux security update",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2020/01/msg00013.html"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://packetstormsecurity.com/files/156495/Android-Binder-Use-After-Free.html"
          },
          {
            "name": "[debian-lts-announce] 20200302 [SECURITY] [DLA 2114-1] linux-4.9 security update",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2020/03/msg00001.html"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "LOCAL",
              "availabilityImpact": "HIGH",
              "baseScore": 7.8,
              "baseSeverity": "HIGH",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "HIGH",
              "privilegesRequired": "LOW",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2019-2215",
                "options": [
                  {
                    "Exploitation": "active"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-02-07T13:04:20.328785Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          },
          {
            "other": {
              "content": {
                "dateAdded": "2021-11-03",
                "reference": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-2215"
              },
              "type": "kev"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-416",
                "description": "CWE-416 Use After Free",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-10-21T23:45:29.242Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "references": [
          {
            "tags": [
              "government-resource"
            ],
            "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-2215"
          }
        ],
        "timeline": [
          {
            "lang": "en",
            "time": "2021-11-03T00:00:00+00:00",
            "value": "CVE-2019-2215 added to CISA KEV"
          }
        ],
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Android",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "Kernel"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A use-after-free in binder.c allows an elevation of privilege from an application to the Linux Kernel. No user interaction is required to exploit this vulnerability, however exploitation does require either the installation of a malicious local application or a separate vulnerability in a network facing application.Product: AndroidAndroid ID: A-141720095"
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Elevation of privilege",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2020-03-02T19:06:43.000Z",
        "orgId": "baff130e-b8d5-4e15-b3d3-c3cf5d5545c6",
        "shortName": "google_android"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://source.android.com/security/bulletin/2019-10-01"
        },
        {
          "name": "20191018 CVE 2019-2215 Android Binder Use After Free",
          "tags": [
            "mailing-list",
            "x_refsource_FULLDISC"
          ],
          "url": "http://seclists.org/fulldisclosure/2019/Oct/38"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://packetstormsecurity.com/files/154911/Android-Binder-Use-After-Free.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191030-01-binder-en"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://security.netapp.com/advisory/ntap-20191031-0005/"
        },
        {
          "name": "20191108 [slackware-security] Slackware 14.2 kernel (SSA:2019-311-01)",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "https://seclists.org/bugtraq/2019/Nov/11"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://packetstormsecurity.com/files/155212/Slackware-Security-Advisory-Slackware-14.2-kernel-Updates.html"
        },
        {
          "name": "USN-4186-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/4186-1/"
        },
        {
          "name": "[debian-lts-announce] 20200118 [SECURITY] [DLA 2068-1] linux security update",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2020/01/msg00013.html"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://packetstormsecurity.com/files/156495/Android-Binder-Use-After-Free.html"
        },
        {
          "name": "[debian-lts-announce] 20200302 [SECURITY] [DLA 2114-1] linux-4.9 security update",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2020/03/msg00001.html"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "security@android.com",
          "ID": "CVE-2019-2215",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Android",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Kernel"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "A use-after-free in binder.c allows an elevation of privilege from an application to the Linux Kernel. No user interaction is required to exploit this vulnerability, however exploitation does require either the installation of a malicious local application or a separate vulnerability in a network facing application.Product: AndroidAndroid ID: A-141720095"
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Elevation of privilege"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://source.android.com/security/bulletin/2019-10-01",
              "refsource": "CONFIRM",
              "url": "https://source.android.com/security/bulletin/2019-10-01"
            },
            {
              "name": "20191018 CVE 2019-2215 Android Binder Use After Free",
              "refsource": "FULLDISC",
              "url": "http://seclists.org/fulldisclosure/2019/Oct/38"
            },
            {
              "name": "http://packetstormsecurity.com/files/154911/Android-Binder-Use-After-Free.html",
              "refsource": "MISC",
              "url": "http://packetstormsecurity.com/files/154911/Android-Binder-Use-After-Free.html"
            },
            {
              "name": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191030-01-binder-en",
              "refsource": "CONFIRM",
              "url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191030-01-binder-en"
            },
            {
              "name": "https://security.netapp.com/advisory/ntap-20191031-0005/",
              "refsource": "CONFIRM",
              "url": "https://security.netapp.com/advisory/ntap-20191031-0005/"
            },
            {
              "name": "20191108 [slackware-security] Slackware 14.2 kernel (SSA:2019-311-01)",
              "refsource": "BUGTRAQ",
              "url": "https://seclists.org/bugtraq/2019/Nov/11"
            },
            {
              "name": "http://packetstormsecurity.com/files/155212/Slackware-Security-Advisory-Slackware-14.2-kernel-Updates.html",
              "refsource": "MISC",
              "url": "http://packetstormsecurity.com/files/155212/Slackware-Security-Advisory-Slackware-14.2-kernel-Updates.html"
            },
            {
              "name": "USN-4186-1",
              "refsource": "UBUNTU",
              "url": "https://usn.ubuntu.com/4186-1/"
            },
            {
              "name": "[debian-lts-announce] 20200118 [SECURITY] [DLA 2068-1] linux security update",
              "refsource": "MLIST",
              "url": "https://lists.debian.org/debian-lts-announce/2020/01/msg00013.html"
            },
            {
              "name": "http://packetstormsecurity.com/files/156495/Android-Binder-Use-After-Free.html",
              "refsource": "MISC",
              "url": "http://packetstormsecurity.com/files/156495/Android-Binder-Use-After-Free.html"
            },
            {
              "name": "[debian-lts-announce] 20200302 [SECURITY] [DLA 2114-1] linux-4.9 security update",
              "refsource": "MLIST",
              "url": "https://lists.debian.org/debian-lts-announce/2020/03/msg00001.html"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "baff130e-b8d5-4e15-b3d3-c3cf5d5545c6",
    "assignerShortName": "google_android",
    "cveId": "CVE-2019-2215",
    "datePublished": "2019-10-11T18:16:48.000Z",
    "dateReserved": "2018-12-10T00:00:00.000Z",
    "dateUpdated": "2025-10-21T23:45:29.242Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2019-9506 (GCVE-0-2019-9506)

Vulnerability from nvd – Published: 2019-08-14 16:27 – Updated: 2024-09-16 19:14
VLAI?
Title
Blutooth BR/EDR specification does not specify sufficient encryption key length and allows an attacker to influence key length negotiation
Summary
The Bluetooth BR/EDR specification up to and including version 5.1 permits sufficiently low encryption key length and does not prevent an attacker from influencing the key length negotiation. This allows practical brute-force attacks (aka "KNOB") that can decrypt traffic and inject arbitrary ciphertext without the victim noticing.
Severity ?
7.6 (High)
CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L
CWE
Assigner
References
https://www.kb.cert.org/vuls/id/918987/ third-party-advisoryx_refsource_CERT-VN
http://www.cs.ox.ac.uk/publications/publication12… x_refsource_MISC
https://www.usenix.org/conference/usenixsecurity1… x_refsource_MISC
https://www.bluetooth.com/security/statement-key-… x_refsource_CONFIRM
http://seclists.org/fulldisclosure/2019/Aug/14 mailing-listx_refsource_FULLDISC
http://seclists.org/fulldisclosure/2019/Aug/11 mailing-listx_refsource_FULLDISC
http://seclists.org/fulldisclosure/2019/Aug/13 mailing-listx_refsource_FULLDISC
http://seclists.org/fulldisclosure/2019/Aug/15 mailing-listx_refsource_FULLDISC
http://www.huawei.com/en/psirt/security-advisorie… x_refsource_CONFIRM
https://usn.ubuntu.com/4115-1/ vendor-advisoryx_refsource_UBUNTU
https://usn.ubuntu.com/4118-1/ vendor-advisoryx_refsource_UBUNTU
https://lists.debian.org/debian-lts-announce/2019… mailing-listx_refsource_MLIST
https://lists.debian.org/debian-lts-announce/2019… mailing-listx_refsource_MLIST
https://lists.debian.org/debian-lts-announce/2019… mailing-listx_refsource_MLIST
https://usn.ubuntu.com/4147-1/ vendor-advisoryx_refsource_UBUNTU
https://access.redhat.com/errata/RHSA-2019:2975 vendor-advisoryx_refsource_REDHAT
http://lists.opensuse.org/opensuse-security-annou… vendor-advisoryx_refsource_SUSE
http://lists.opensuse.org/opensuse-security-annou… vendor-advisoryx_refsource_SUSE
https://access.redhat.com/errata/RHSA-2019:3076 vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2019:3055 vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2019:3089 vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2019:3187 vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2019:3165 vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2019:3217 vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2019:3220 vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2019:3231 vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2019:3218 vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2019:3309 vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2019:3517 vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2020:0204 vendor-advisoryx_refsource_REDHAT
Impacted products
Vendor Product Version
Bluetooth BR/EDR Affected: 5.1 , ≤ 5.1 (custom)
Create a notification for this product.
Credits
Daniele Antonioli‚ Nils Ole Tippenhauer, Kasper Rasmussen
Show details on NVD website
To clipboard 

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T21:54:44.303Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "VU#918987",
            "tags": [
              "third-party-advisory",
              "x_refsource_CERT-VN",
              "x_transferred"
            ],
            "url": "https://www.kb.cert.org/vuls/id/918987/"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://www.cs.ox.ac.uk/publications/publication12404-abstract.html"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://www.usenix.org/conference/usenixsecurity19/presentation/antonioli"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://www.bluetooth.com/security/statement-key-negotiation-of-bluetooth/"
          },
          {
            "name": "20190816 APPLE-SA-2019-8-13-3 Additional information for APPLE-SA-2019-7-22-4 watchOS 5.3",
            "tags": [
              "mailing-list",
              "x_refsource_FULLDISC",
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2019/Aug/14"
          },
          {
            "name": "20190816 APPLE-SA-2019-8-13-1 Additional information for APPLE-SA-2019-7-22-2 macOS Mojave 10.14.6, Security Update 2019-004 High Sierra, Security Update 2019-004 Sierra",
            "tags": [
              "mailing-list",
              "x_refsource_FULLDISC",
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2019/Aug/11"
          },
          {
            "name": "20190816 APPLE-SA-2019-8-13-2 Additional information for APPLE-SA-2019-7-22-1 iOS 12.4",
            "tags": [
              "mailing-list",
              "x_refsource_FULLDISC",
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2019/Aug/13"
          },
          {
            "name": "20190816 APPLE-SA-2019-8-13-4 Additional information for APPLE-SA-2019-7-22-5 tvOS 12.4",
            "tags": [
              "mailing-list",
              "x_refsource_FULLDISC",
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2019/Aug/15"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190828-01-knob-en"
          },
          {
            "name": "USN-4115-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/4115-1/"
          },
          {
            "name": "USN-4118-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/4118-1/"
          },
          {
            "name": "[debian-lts-announce] 20190914 [SECURITY] [DLA 1919-1] linux-4.9 security update",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2019/09/msg00014.html"
          },
          {
            "name": "[debian-lts-announce] 20190915 [SECURITY] [DLA 1919-2] linux-4.9 security update",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2019/09/msg00015.html"
          },
          {
            "name": "[debian-lts-announce] 20190925 [SECURITY] [DLA 1930-1] linux security update",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2019/09/msg00025.html"
          },
          {
            "name": "USN-4147-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/4147-1/"
          },
          {
            "name": "RHSA-2019:2975",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2019:2975"
          },
          {
            "name": "openSUSE-SU-2019:2307",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00037.html"
          },
          {
            "name": "openSUSE-SU-2019:2308",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00036.html"
          },
          {
            "name": "RHSA-2019:3076",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2019:3076"
          },
          {
            "name": "RHSA-2019:3055",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2019:3055"
          },
          {
            "name": "RHSA-2019:3089",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2019:3089"
          },
          {
            "name": "RHSA-2019:3187",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2019:3187"
          },
          {
            "name": "RHSA-2019:3165",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2019:3165"
          },
          {
            "name": "RHSA-2019:3217",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2019:3217"
          },
          {
            "name": "RHSA-2019:3220",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2019:3220"
          },
          {
            "name": "RHSA-2019:3231",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2019:3231"
          },
          {
            "name": "RHSA-2019:3218",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2019:3218"
          },
          {
            "name": "RHSA-2019:3309",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2019:3309"
          },
          {
            "name": "RHSA-2019:3517",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2019:3517"
          },
          {
            "name": "RHSA-2020:0204",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2020:0204"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "platforms": [
            "N/A"
          ],
          "product": "BR/EDR",
          "vendor": "Bluetooth",
          "versions": [
            {
              "lessThanOrEqual": "5.1",
              "status": "affected",
              "version": "5.1",
              "versionType": "custom"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "value": "Daniele Antonioli\u201a Nils Ole Tippenhauer, Kasper Rasmussen"
        }
      ],
      "datePublic": "2019-08-14T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "The Bluetooth BR/EDR specification up to and including version 5.1 permits sufficiently low encryption key length and does not prevent an attacker from influencing the key length negotiation. This allows practical brute-force attacks (aka \"KNOB\") that can decrypt traffic and inject arbitrary ciphertext without the victim noticing."
        }
      ],
      "metrics": [
        {
          "cvssV3_0": {
            "attackComplexity": "LOW",
            "attackVector": "ADJACENT_NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 7.6,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L",
            "version": "3.0"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-310",
              "description": "CWE-310 Cryptographic Issues",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2020-01-30T10:06:23",
        "orgId": "37e5125f-f79b-445b-8fad-9564f167944b",
        "shortName": "certcc"
      },
      "references": [
        {
          "name": "VU#918987",
          "tags": [
            "third-party-advisory",
            "x_refsource_CERT-VN"
          ],
          "url": "https://www.kb.cert.org/vuls/id/918987/"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://www.cs.ox.ac.uk/publications/publication12404-abstract.html"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://www.usenix.org/conference/usenixsecurity19/presentation/antonioli"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://www.bluetooth.com/security/statement-key-negotiation-of-bluetooth/"
        },
        {
          "name": "20190816 APPLE-SA-2019-8-13-3 Additional information for APPLE-SA-2019-7-22-4 watchOS 5.3",
          "tags": [
            "mailing-list",
            "x_refsource_FULLDISC"
          ],
          "url": "http://seclists.org/fulldisclosure/2019/Aug/14"
        },
        {
          "name": "20190816 APPLE-SA-2019-8-13-1 Additional information for APPLE-SA-2019-7-22-2 macOS Mojave 10.14.6, Security Update 2019-004 High Sierra, Security Update 2019-004 Sierra",
          "tags": [
            "mailing-list",
            "x_refsource_FULLDISC"
          ],
          "url": "http://seclists.org/fulldisclosure/2019/Aug/11"
        },
        {
          "name": "20190816 APPLE-SA-2019-8-13-2 Additional information for APPLE-SA-2019-7-22-1 iOS 12.4",
          "tags": [
            "mailing-list",
            "x_refsource_FULLDISC"
          ],
          "url": "http://seclists.org/fulldisclosure/2019/Aug/13"
        },
        {
          "name": "20190816 APPLE-SA-2019-8-13-4 Additional information for APPLE-SA-2019-7-22-5 tvOS 12.4",
          "tags": [
            "mailing-list",
            "x_refsource_FULLDISC"
          ],
          "url": "http://seclists.org/fulldisclosure/2019/Aug/15"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190828-01-knob-en"
        },
        {
          "name": "USN-4115-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/4115-1/"
        },
        {
          "name": "USN-4118-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/4118-1/"
        },
        {
          "name": "[debian-lts-announce] 20190914 [SECURITY] [DLA 1919-1] linux-4.9 security update",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2019/09/msg00014.html"
        },
        {
          "name": "[debian-lts-announce] 20190915 [SECURITY] [DLA 1919-2] linux-4.9 security update",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2019/09/msg00015.html"
        },
        {
          "name": "[debian-lts-announce] 20190925 [SECURITY] [DLA 1930-1] linux security update",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2019/09/msg00025.html"
        },
        {
          "name": "USN-4147-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/4147-1/"
        },
        {
          "name": "RHSA-2019:2975",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2019:2975"
        },
        {
          "name": "openSUSE-SU-2019:2307",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00037.html"
        },
        {
          "name": "openSUSE-SU-2019:2308",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00036.html"
        },
        {
          "name": "RHSA-2019:3076",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2019:3076"
        },
        {
          "name": "RHSA-2019:3055",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2019:3055"
        },
        {
          "name": "RHSA-2019:3089",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2019:3089"
        },
        {
          "name": "RHSA-2019:3187",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2019:3187"
        },
        {
          "name": "RHSA-2019:3165",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2019:3165"
        },
        {
          "name": "RHSA-2019:3217",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2019:3217"
        },
        {
          "name": "RHSA-2019:3220",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2019:3220"
        },
        {
          "name": "RHSA-2019:3231",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2019:3231"
        },
        {
          "name": "RHSA-2019:3218",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2019:3218"
        },
        {
          "name": "RHSA-2019:3309",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2019:3309"
        },
        {
          "name": "RHSA-2019:3517",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2019:3517"
        },
        {
          "name": "RHSA-2020:0204",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2020:0204"
        }
      ],
      "source": {
        "advisory": "VU#918987",
        "defect": [
          "VU#918987"
        ],
        "discovery": "EXTERNAL"
      },
      "title": "Blutooth BR/EDR specification does not specify sufficient encryption key length and allows an attacker to influence key length negotiation",
      "workarounds": [
        {
          "lang": "en",
          "value": "Bluetooth SIG Expedited Errata Correction 11838"
        }
      ],
      "x_generator": {
        "engine": "Vulnogram 0.0.7"
      },
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "AKA": "KNOB",
          "ASSIGNER": "cert@cert.org",
          "DATE_PUBLIC": "2019-08-14",
          "ID": "CVE-2019-9506",
          "STATE": "PUBLIC",
          "TITLE": "Blutooth BR/EDR specification does not specify sufficient encryption key length and allows an attacker to influence key length negotiation"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "BR/EDR",
                      "version": {
                        "version_data": [
                          {
                            "platform": "N/A",
                            "version_affected": "\u003c=",
                            "version_name": "5.1",
                            "version_value": "5.1"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Bluetooth"
              }
            ]
          }
        },
        "credit": [
          {
            "lang": "eng",
            "value": "Daniele Antonioli\u201a Nils Ole Tippenhauer, Kasper Rasmussen"
          }
        ],
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "The Bluetooth BR/EDR specification up to and including version 5.1 permits sufficiently low encryption key length and does not prevent an attacker from influencing the key length negotiation. This allows practical brute-force attacks (aka \"KNOB\") that can decrypt traffic and inject arbitrary ciphertext without the victim noticing."
            }
          ]
        },
        "generator": {
          "engine": "Vulnogram 0.0.7"
        },
        "impact": {
          "cvss": {
            "attackComplexity": "LOW",
            "attackVector": "ADJACENT_NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 7.6,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L",
            "version": "3.0"
          }
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-310 Cryptographic Issues"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "VU#918987",
              "refsource": "CERT-VN",
              "url": "https://www.kb.cert.org/vuls/id/918987/"
            },
            {
              "name": "http://www.cs.ox.ac.uk/publications/publication12404-abstract.html",
              "refsource": "MISC",
              "url": "http://www.cs.ox.ac.uk/publications/publication12404-abstract.html"
            },
            {
              "name": "https://www.usenix.org/conference/usenixsecurity19/presentation/antonioli",
              "refsource": "MISC",
              "url": "https://www.usenix.org/conference/usenixsecurity19/presentation/antonioli"
            },
            {
              "name": "https://www.bluetooth.com/security/statement-key-negotiation-of-bluetooth/",
              "refsource": "CONFIRM",
              "url": "https://www.bluetooth.com/security/statement-key-negotiation-of-bluetooth/"
            },
            {
              "name": "20190816 APPLE-SA-2019-8-13-3 Additional information for APPLE-SA-2019-7-22-4 watchOS 5.3",
              "refsource": "FULLDISC",
              "url": "http://seclists.org/fulldisclosure/2019/Aug/14"
            },
            {
              "name": "20190816 APPLE-SA-2019-8-13-1 Additional information for APPLE-SA-2019-7-22-2 macOS Mojave 10.14.6, Security Update 2019-004 High Sierra, Security Update 2019-004 Sierra",
              "refsource": "FULLDISC",
              "url": "http://seclists.org/fulldisclosure/2019/Aug/11"
            },
            {
              "name": "20190816 APPLE-SA-2019-8-13-2 Additional information for APPLE-SA-2019-7-22-1 iOS 12.4",
              "refsource": "FULLDISC",
              "url": "http://seclists.org/fulldisclosure/2019/Aug/13"
            },
            {
              "name": "20190816 APPLE-SA-2019-8-13-4 Additional information for APPLE-SA-2019-7-22-5 tvOS 12.4",
              "refsource": "FULLDISC",
              "url": "http://seclists.org/fulldisclosure/2019/Aug/15"
            },
            {
              "name": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190828-01-knob-en",
              "refsource": "CONFIRM",
              "url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190828-01-knob-en"
            },
            {
              "name": "USN-4115-1",
              "refsource": "UBUNTU",
              "url": "https://usn.ubuntu.com/4115-1/"
            },
            {
              "name": "USN-4118-1",
              "refsource": "UBUNTU",
              "url": "https://usn.ubuntu.com/4118-1/"
            },
            {
              "name": "[debian-lts-announce] 20190914 [SECURITY] [DLA 1919-1] linux-4.9 security update",
              "refsource": "MLIST",
              "url": "https://lists.debian.org/debian-lts-announce/2019/09/msg00014.html"
            },
            {
              "name": "[debian-lts-announce] 20190915 [SECURITY] [DLA 1919-2] linux-4.9 security update",
              "refsource": "MLIST",
              "url": "https://lists.debian.org/debian-lts-announce/2019/09/msg00015.html"
            },
            {
              "name": "[debian-lts-announce] 20190925 [SECURITY] [DLA 1930-1] linux security update",
              "refsource": "MLIST",
              "url": "https://lists.debian.org/debian-lts-announce/2019/09/msg00025.html"
            },
            {
              "name": "USN-4147-1",
              "refsource": "UBUNTU",
              "url": "https://usn.ubuntu.com/4147-1/"
            },
            {
              "name": "RHSA-2019:2975",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2019:2975"
            },
            {
              "name": "openSUSE-SU-2019:2307",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00037.html"
            },
            {
              "name": "openSUSE-SU-2019:2308",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00036.html"
            },
            {
              "name": "RHSA-2019:3076",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2019:3076"
            },
            {
              "name": "RHSA-2019:3055",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2019:3055"
            },
            {
              "name": "RHSA-2019:3089",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2019:3089"
            },
            {
              "name": "RHSA-2019:3187",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2019:3187"
            },
            {
              "name": "RHSA-2019:3165",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2019:3165"
            },
            {
              "name": "RHSA-2019:3217",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2019:3217"
            },
            {
              "name": "RHSA-2019:3220",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2019:3220"
            },
            {
              "name": "RHSA-2019:3231",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2019:3231"
            },
            {
              "name": "RHSA-2019:3218",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2019:3218"
            },
            {
              "name": "RHSA-2019:3309",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2019:3309"
            },
            {
              "name": "RHSA-2019:3517",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2019:3517"
            },
            {
              "name": "RHSA-2020:0204",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2020:0204"
            }
          ]
        },
        "source": {
          "advisory": "VU#918987",
          "defect": [
            "VU#918987"
          ],
          "discovery": "EXTERNAL"
        },
        "work_around": [
          {
            "lang": "en",
            "value": "Bluetooth SIG Expedited Errata Correction 11838"
          }
        ]
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "37e5125f-f79b-445b-8fad-9564f167944b",
    "assignerShortName": "certcc",
    "cveId": "CVE-2019-9506",
    "datePublished": "2019-08-14T16:27:45.059869Z",
    "dateReserved": "2019-03-01T00:00:00",
    "dateUpdated": "2024-09-16T19:14:13.573Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2018-7910 (GCVE-0-2018-7910)

Vulnerability from nvd – Published: 2018-11-13 19:00 – Updated: 2024-08-05 06:37
VLAI?
Summary
Some Huawei smartphones ALP-AL00B 8.0.0.118D(C00), ALP-TL00B 8.0.0.118D(C01), BLA-AL00B 8.0.0.118D(C00), BLA-L09C 8.0.0.127(C432), 8.0.0.128(C432), 8.0.0.137(C432), BLA-L29C 8.0.0.129(C432), 8.0.0.137(C432) have an authentication bypass vulnerability. When the attacker obtains the user's smartphone, the vulnerability can be used to replace the start-up program so that the attacker can obtain the information in the smartphone and achieve the purpose of controlling the smartphone.
Severity ?
No CVSS data available.
CWE
  • authentication bypass
Assigner
References
Impacted products
Vendor Product Version
Huawei Technologies Co., Ltd. ALP-AL00B, ALP-TL00B, BLA-AL00B, BLA-L09C, BLA-L29C Affected: ALP-AL00B 8.0.0.118D(C00), ALP-TL00B 8.0.0.118D(C01), BLA-AL00B 8.0.0.118D(C00), BLA-L09C 8.0.0.127(C432), 8.0.0.128(C432), 8.0.0.137(C432), BLA-L29C 8.0.0.129(C432), 8.0.0.137(C432)
Create a notification for this product.
Show details on NVD website
To clipboard 

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T06:37:59.598Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20181101-01-bypass-en"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "ALP-AL00B, ALP-TL00B, BLA-AL00B, BLA-L09C, BLA-L29C",
          "vendor": "Huawei Technologies Co., Ltd.",
          "versions": [
            {
              "status": "affected",
              "version": "ALP-AL00B 8.0.0.118D(C00), ALP-TL00B 8.0.0.118D(C01), BLA-AL00B 8.0.0.118D(C00), BLA-L09C 8.0.0.127(C432), 8.0.0.128(C432), 8.0.0.137(C432), BLA-L29C 8.0.0.129(C432), 8.0.0.137(C432)"
            }
          ]
        }
      ],
      "datePublic": "2018-11-01T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Some Huawei smartphones ALP-AL00B 8.0.0.118D(C00), ALP-TL00B 8.0.0.118D(C01), BLA-AL00B 8.0.0.118D(C00), BLA-L09C 8.0.0.127(C432), 8.0.0.128(C432), 8.0.0.137(C432), BLA-L29C 8.0.0.129(C432), 8.0.0.137(C432) have an authentication bypass vulnerability. When the attacker obtains the user\u0027s smartphone, the vulnerability can be used to replace the start-up program so that the attacker can obtain the information in the smartphone and achieve the purpose of controlling the smartphone."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "authentication bypass",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-11-13T18:57:01",
        "orgId": "25ac1063-e409-4190-8079-24548c77ea2e",
        "shortName": "huawei"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20181101-01-bypass-en"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@huawei.com",
          "ID": "CVE-2018-7910",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "ALP-AL00B, ALP-TL00B, BLA-AL00B, BLA-L09C, BLA-L29C",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "ALP-AL00B 8.0.0.118D(C00), ALP-TL00B 8.0.0.118D(C01), BLA-AL00B 8.0.0.118D(C00), BLA-L09C 8.0.0.127(C432), 8.0.0.128(C432), 8.0.0.137(C432), BLA-L29C 8.0.0.129(C432), 8.0.0.137(C432)"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Huawei Technologies Co., Ltd."
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Some Huawei smartphones ALP-AL00B 8.0.0.118D(C00), ALP-TL00B 8.0.0.118D(C01), BLA-AL00B 8.0.0.118D(C00), BLA-L09C 8.0.0.127(C432), 8.0.0.128(C432), 8.0.0.137(C432), BLA-L29C 8.0.0.129(C432), 8.0.0.137(C432) have an authentication bypass vulnerability. When the attacker obtains the user\u0027s smartphone, the vulnerability can be used to replace the start-up program so that the attacker can obtain the information in the smartphone and achieve the purpose of controlling the smartphone."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "authentication bypass"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20181101-01-bypass-en",
              "refsource": "CONFIRM",
              "url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20181101-01-bypass-en"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "25ac1063-e409-4190-8079-24548c77ea2e",
    "assignerShortName": "huawei",
    "cveId": "CVE-2018-7910",
    "datePublished": "2018-11-13T19:00:00",
    "dateReserved": "2018-03-09T00:00:00",
    "dateUpdated": "2024-08-05T06:37:59.598Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2019-19412 (GCVE-0-2019-19412)

Vulnerability from cvelistv5 – Published: 2020-06-08 18:21 – Updated: 2024-08-05 02:16
VLAI?
Summary
Huawei smart phones have a Factory Reset Protection (FRP) bypass security vulnerability. When re-configuring the mobile phone using the factory reset protection (FRP) function, an attacker login the Talkback mode and can perform some operations to install a third-Party application. Affected products can be found in https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-frp-en.
Severity ?
No CVSS data available.
CWE
  • FRP Bypass
Assigner
References
Impacted products
Vendor Product Version
Huawei ALP-AL00B Affected: earlier than 9.0.0.181(C00E87R2P20T8)
Create a notification for this product.
    Huawei ALP-L09 Affected: earlier than 9.0.0.201(C432E4R1P9)
Create a notification for this product.
    Huawei ALP-L29 Affected: earlier than 9.0.0.177(C185E2R1P12T8)
Affected: earlier than 9.0.0.195(C636E2R1P12)
Create a notification for this product.
    Huawei Anne-AL00 Affected: earlier than 8.0.0.168(C00)
Create a notification for this product.
    Huawei BLA-AL00B Affected: earlier than 9.0.0.181(C00E88R2P15T8)
Create a notification for this product.
    Huawei BLA-L09C Affected: earlier than 9.0.0.177(C185E2R1P13T8)
Affected: earlier than 9.0.0.206(C432E4R1P11)
Create a notification for this product.
    Huawei BLA-L29C Affected: earlier than 9.0.0.179(C576E2R1P7T8)
Affected: earlier than 9.0.0.194(C185E2R1P13)
Affected: earlier than 9.0.0.206(C432E4R1P11)
Affected: earlier than 9.0.0.210(C635E4R1P13)
Create a notification for this product.
    Huawei Berkeley-AL20 Affected: earlier than 9.0.0.156(C00E156R2P14T8)
Create a notification for this product.
    Huawei Berkeley-L09 Affected: earlier than 8.0.0.172(C432)
Affected: earlier than 8.0.0.173(C636)
Create a notification for this product.
    Huawei Emily-L29C Affected: earlier than 9.0.0.159(C185E2R1P12T8)
Affected: earlier than 9.0.0.159(C461E2R1P11T8)
Affected: earlier than 9.0.0.160(C432E7R1P11T8)
Affected: earlier than 9.0.0.165(C605E2R1P12)
Affected: earlier than 9.0.0.168(C636E7R1P13T8)
Affected: earlier than 9.0.0.168(C782E3R1P11T8)
Affected: earlier than 9.0.0.196(C635E2R1P11T8)
Create a notification for this product.
    Huawei Figo-L03 Affected: earlier than 9.1.0.130(C605E6R1P5T8)
Create a notification for this product.
    Huawei Figo-L21 Affected: earlier than 9.1.0.130(C185E6R1P5T8)
Affected: earlier than 9.1.0.130(C635E6R1P5T8)
Create a notification for this product.
    Huawei Figo-L23 Affected: earlier than 9.1.0.130(C605E6R1P5T8)
Create a notification for this product.
    Huawei Figo-L31 Affected: earlier than 9.1.0.130(C432E8R1P5T8)
Create a notification for this product.
    Huawei Florida-L03 Affected: earlier than 9.1.0.121(C605E5R1P1T8)
Create a notification for this product.
    Huawei Florida-L21 Affected: earlier than 8.0.0.129(C605)
Affected: earlier than 8.0.0.131(C432)
Affected: earlier than 8.0.0.132(C185)
Create a notification for this product.
    Huawei Florida-L22 Affected: earlier than 8.0.0.132(C636)
Create a notification for this product.
    Huawei Florida-L23 Affected: earlier than 8.0.0.144(C605)
Create a notification for this product.
    Huawei HUAWEI P smart Affected: earlier than 9.1.0.130(C185E6R1P5T8)
Affected: earlier than 9.1.0.130(C605E6R1P5T8)
Create a notification for this product.
    Huawei HUAWEI P smart,HUAWEI Y7s Affected: earlier than 9.1.0.124(C636E6R1P5T8)
Create a notification for this product.
    Huawei HUAWEI P20 lite Affected: earlier than 8.0.0.148(C635)
Affected: earlier than 8.0.0.155(C185)
Affected: earlier than 8.0.0.155(C605)
Affected: earlier than 8.0.0.156(C605)
Affected: earlier than 8.0.0.157(C432)
Create a notification for this product.
    Huawei HUAWEI nova 3e,HUAWEI P20 lite Affected: earlier than 8.0.0.147(C461)
Affected: earlier than 8.0.0.148(ZAFC185)
Affected: earlier than 8.0.0.160(C185)
Affected: earlier than 8.0.0.160(C605)
Affected: earlier than 8.0.0.168(C432)
Affected: earlier than 8.0.0.172(C636)
Create a notification for this product.
    Huawei Honor View 10 Affected: earlier than 9.0.0.202(C567E6R1P12T8)
Create a notification for this product.
    Huawei Leland-AL00A Affected: earlier than 8.0.0.182(C00)
Create a notification for this product.
    Huawei Leland-L21A Affected: earlier than 8.0.0.135(C185)
Affected: earlier than 9.1.0.118(C636E4R1P1T8)
Create a notification for this product.
    Huawei Leland-L22A Affected: earlier than 9.1.0.118(C636E4R1P1T8)
Create a notification for this product.
    Huawei Leland-L22C Affected: earlier than 9.1.0.118(C636E4R1P1T8)
Create a notification for this product.
    Huawei Leland-L31A Affected: earlier than 8.0.0.139(C432)
Create a notification for this product.
Show details on NVD website
To clipboard 

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T02:16:47.114Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-frp-en"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "ALP-AL00B",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 9.0.0.181(C00E87R2P20T8)"
            }
          ]
        },
        {
          "product": "ALP-L09",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 9.0.0.201(C432E4R1P9)"
            }
          ]
        },
        {
          "product": "ALP-L29",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 9.0.0.177(C185E2R1P12T8)"
            },
            {
              "status": "affected",
              "version": "earlier than 9.0.0.195(C636E2R1P12)"
            }
          ]
        },
        {
          "product": "Anne-AL00",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 8.0.0.168(C00)"
            }
          ]
        },
        {
          "product": "BLA-AL00B",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 9.0.0.181(C00E88R2P15T8)"
            }
          ]
        },
        {
          "product": "BLA-L09C",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 9.0.0.177(C185E2R1P13T8)"
            },
            {
              "status": "affected",
              "version": "earlier than 9.0.0.206(C432E4R1P11)"
            }
          ]
        },
        {
          "product": "BLA-L29C",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 9.0.0.179(C576E2R1P7T8)"
            },
            {
              "status": "affected",
              "version": "earlier than 9.0.0.194(C185E2R1P13)"
            },
            {
              "status": "affected",
              "version": "earlier than 9.0.0.206(C432E4R1P11)"
            },
            {
              "status": "affected",
              "version": "earlier than 9.0.0.210(C635E4R1P13)"
            }
          ]
        },
        {
          "product": "Berkeley-AL20",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 9.0.0.156(C00E156R2P14T8)"
            }
          ]
        },
        {
          "product": "Berkeley-L09",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 8.0.0.172(C432)"
            },
            {
              "status": "affected",
              "version": "earlier than 8.0.0.173(C636)"
            }
          ]
        },
        {
          "product": "Emily-L29C",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 9.0.0.159(C185E2R1P12T8)"
            },
            {
              "status": "affected",
              "version": "earlier than 9.0.0.159(C461E2R1P11T8)"
            },
            {
              "status": "affected",
              "version": "earlier than 9.0.0.160(C432E7R1P11T8)"
            },
            {
              "status": "affected",
              "version": "earlier than 9.0.0.165(C605E2R1P12)"
            },
            {
              "status": "affected",
              "version": "earlier than 9.0.0.168(C636E7R1P13T8)"
            },
            {
              "status": "affected",
              "version": "earlier than 9.0.0.168(C782E3R1P11T8)"
            },
            {
              "status": "affected",
              "version": "earlier than 9.0.0.196(C635E2R1P11T8)"
            }
          ]
        },
        {
          "product": "Figo-L03",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 9.1.0.130(C605E6R1P5T8)"
            }
          ]
        },
        {
          "product": "Figo-L21",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 9.1.0.130(C185E6R1P5T8)"
            },
            {
              "status": "affected",
              "version": "earlier than 9.1.0.130(C635E6R1P5T8)"
            }
          ]
        },
        {
          "product": "Figo-L23",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 9.1.0.130(C605E6R1P5T8)"
            }
          ]
        },
        {
          "product": "Figo-L31",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 9.1.0.130(C432E8R1P5T8)"
            }
          ]
        },
        {
          "product": "Florida-L03",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 9.1.0.121(C605E5R1P1T8)"
            }
          ]
        },
        {
          "product": "Florida-L21",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 8.0.0.129(C605)"
            },
            {
              "status": "affected",
              "version": "earlier than 8.0.0.131(C432)"
            },
            {
              "status": "affected",
              "version": "earlier than 8.0.0.132(C185)"
            }
          ]
        },
        {
          "product": "Florida-L22",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 8.0.0.132(C636)"
            }
          ]
        },
        {
          "product": "Florida-L23",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 8.0.0.144(C605)"
            }
          ]
        },
        {
          "product": "HUAWEI P smart",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 9.1.0.130(C185E6R1P5T8)"
            },
            {
              "status": "affected",
              "version": "earlier than 9.1.0.130(C605E6R1P5T8)"
            }
          ]
        },
        {
          "product": "HUAWEI P smart,HUAWEI Y7s",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 9.1.0.124(C636E6R1P5T8)"
            }
          ]
        },
        {
          "product": "HUAWEI P20 lite",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 8.0.0.148(C635)"
            },
            {
              "status": "affected",
              "version": "earlier than 8.0.0.155(C185)"
            },
            {
              "status": "affected",
              "version": "earlier than 8.0.0.155(C605)"
            },
            {
              "status": "affected",
              "version": "earlier than 8.0.0.156(C605)"
            },
            {
              "status": "affected",
              "version": "earlier than 8.0.0.157(C432)"
            }
          ]
        },
        {
          "product": "HUAWEI nova 3e,HUAWEI P20 lite",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 8.0.0.147(C461)"
            },
            {
              "status": "affected",
              "version": "earlier than 8.0.0.148(ZAFC185)"
            },
            {
              "status": "affected",
              "version": "earlier than 8.0.0.160(C185)"
            },
            {
              "status": "affected",
              "version": "earlier than 8.0.0.160(C605)"
            },
            {
              "status": "affected",
              "version": "earlier than 8.0.0.168(C432)"
            },
            {
              "status": "affected",
              "version": "earlier than 8.0.0.172(C636)"
            }
          ]
        },
        {
          "product": "Honor View 10",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 9.0.0.202(C567E6R1P12T8)"
            }
          ]
        },
        {
          "product": "Leland-AL00A",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 8.0.0.182(C00)"
            }
          ]
        },
        {
          "product": "Leland-L21A",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 8.0.0.135(C185)"
            },
            {
              "status": "affected",
              "version": "earlier than 9.1.0.118(C636E4R1P1T8)"
            }
          ]
        },
        {
          "product": "Leland-L22A",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 9.1.0.118(C636E4R1P1T8)"
            }
          ]
        },
        {
          "product": "Leland-L22C",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 9.1.0.118(C636E4R1P1T8)"
            }
          ]
        },
        {
          "product": "Leland-L31A",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 8.0.0.139(C432)"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Huawei smart phones have a Factory Reset Protection (FRP) bypass security vulnerability. When re-configuring the mobile phone using the factory reset protection (FRP) function, an attacker login the Talkback mode and can perform some operations to install a third-Party application. Affected products can be found in https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-frp-en."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "FRP Bypass",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2020-07-08T15:29:39",
        "orgId": "25ac1063-e409-4190-8079-24548c77ea2e",
        "shortName": "huawei"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-frp-en"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@huawei.com",
          "ID": "CVE-2019-19412",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "ALP-AL00B",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 9.0.0.181(C00E87R2P20T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "ALP-L09",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 9.0.0.201(C432E4R1P9)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "ALP-L29",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 9.0.0.177(C185E2R1P12T8)"
                          },
                          {
                            "version_value": "earlier than 9.0.0.195(C636E2R1P12)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Anne-AL00",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 8.0.0.168(C00)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "BLA-AL00B",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 9.0.0.181(C00E88R2P15T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "BLA-L09C",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 9.0.0.177(C185E2R1P13T8)"
                          },
                          {
                            "version_value": "earlier than 9.0.0.206(C432E4R1P11)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "BLA-L29C",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 9.0.0.179(C576E2R1P7T8)"
                          },
                          {
                            "version_value": "earlier than 9.0.0.194(C185E2R1P13)"
                          },
                          {
                            "version_value": "earlier than 9.0.0.206(C432E4R1P11)"
                          },
                          {
                            "version_value": "earlier than 9.0.0.210(C635E4R1P13)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Berkeley-AL20",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 9.0.0.156(C00E156R2P14T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Berkeley-L09",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 8.0.0.172(C432)"
                          },
                          {
                            "version_value": "earlier than 8.0.0.173(C636)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Emily-L29C",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 9.0.0.159(C185E2R1P12T8)"
                          },
                          {
                            "version_value": "earlier than 9.0.0.159(C461E2R1P11T8)"
                          },
                          {
                            "version_value": "earlier than 9.0.0.160(C432E7R1P11T8)"
                          },
                          {
                            "version_value": "earlier than 9.0.0.165(C605E2R1P12)"
                          },
                          {
                            "version_value": "earlier than 9.0.0.168(C636E7R1P13T8)"
                          },
                          {
                            "version_value": "earlier than 9.0.0.168(C782E3R1P11T8)"
                          },
                          {
                            "version_value": "earlier than 9.0.0.196(C635E2R1P11T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Figo-L03",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 9.1.0.130(C605E6R1P5T8)"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Huawei"
              },
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Figo-L21",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 9.1.0.130(C185E6R1P5T8)"
                          },
                          {
                            "version_value": "earlier than 9.1.0.130(C635E6R1P5T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Figo-L23",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 9.1.0.130(C605E6R1P5T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Figo-L31",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 9.1.0.130(C432E8R1P5T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Florida-L03",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 9.1.0.121(C605E5R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Florida-L21",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 8.0.0.129(C605)"
                          },
                          {
                            "version_value": "earlier than 8.0.0.131(C432)"
                          },
                          {
                            "version_value": "earlier than 8.0.0.132(C185)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Florida-L22",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 8.0.0.132(C636)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Florida-L23",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 8.0.0.144(C605)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "HUAWEI P smart",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 9.1.0.130(C185E6R1P5T8)"
                          },
                          {
                            "version_value": "earlier than 9.1.0.130(C605E6R1P5T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "HUAWEI P smart,HUAWEI Y7s",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 9.1.0.124(C636E6R1P5T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "HUAWEI P20 lite",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 8.0.0.148(C635)"
                          },
                          {
                            "version_value": "earlier than 8.0.0.155(C185)"
                          },
                          {
                            "version_value": "earlier than 8.0.0.155(C605)"
                          },
                          {
                            "version_value": "earlier than 8.0.0.156(C605)"
                          },
                          {
                            "version_value": "earlier than 8.0.0.157(C432)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "HUAWEI nova 3e,HUAWEI P20 lite",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 8.0.0.147(C461)"
                          },
                          {
                            "version_value": "earlier than 8.0.0.148(ZAFC185)"
                          },
                          {
                            "version_value": "earlier than 8.0.0.160(C185)"
                          },
                          {
                            "version_value": "earlier than 8.0.0.160(C605)"
                          },
                          {
                            "version_value": "earlier than 8.0.0.168(C432)"
                          },
                          {
                            "version_value": "earlier than 8.0.0.172(C636)"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Huawei"
              },
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Honor View 10",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 9.0.0.202(C567E6R1P12T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Leland-AL00A",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 8.0.0.182(C00)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Leland-L21A",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 8.0.0.135(C185)"
                          },
                          {
                            "version_value": "earlier than 9.1.0.118(C636E4R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Leland-L22A",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 9.1.0.118(C636E4R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Leland-L22C",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 9.1.0.118(C636E4R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Leland-L31A",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 8.0.0.139(C432)"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Huawei"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Huawei smart phones have a Factory Reset Protection (FRP) bypass security vulnerability. When re-configuring the mobile phone using the factory reset protection (FRP) function, an attacker login the Talkback mode and can perform some operations to install a third-Party application. Affected products can be found in https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-frp-en."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "FRP Bypass"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-frp-en",
              "refsource": "CONFIRM",
              "url": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-frp-en"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "25ac1063-e409-4190-8079-24548c77ea2e",
    "assignerShortName": "huawei",
    "cveId": "CVE-2019-19412",
    "datePublished": "2020-06-08T18:21:28",
    "dateReserved": "2019-11-29T00:00:00",
    "dateUpdated": "2024-08-05T02:16:47.114Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2019-5303 (GCVE-0-2019-5303)

Vulnerability from cvelistv5 – Published: 2020-04-27 20:01 – Updated: 2024-08-04 19:54
VLAI?
Summary
There are two denial of service vulnerabilities on some Huawei smartphones. An attacker may send specially crafted TD-SCDMA messages from a rogue base station to the affected devices. Due to insufficient input validation of two values when parsing the messages, successful exploit may cause device abnormal. This is 2 out of 2 vulnerabilities. Different than CVE-2020-5302. Affected products are: ALP-AL00B: earlier than 9.1.0.333(C00E333R2P1T8) ALP-L09: earlier than 9.1.0.300(C432E4R1P9T8) ALP-L29: earlier than 9.1.0.315(C636E5R1P13T8) BLA-L29C: earlier than 9.1.0.321(C636E4R1P14T8), earlier than 9.1.0.330(C432E6R1P12T8), earlier than 9.1.0.302(C635E4R1P13T8) Berkeley-AL20: earlier than 9.1.0.333(C00E333R2P1T8) Berkeley-L09: earlier than 9.1.0.350(C10E3R1P14T8), earlier than 9.1.0.351(C432E5R1P13T8), earlier than 9.1.0.350(C636E4R1P13T8) Charlotte-L09C: earlier than 9.1.0.311(C185E4R1P11T8), earlier than 9.1.0.345(C432E8R1P11T8) Charlotte-L29C: earlier than 9.1.0.325(C185E4R1P11T8), earlier than 9.1.0.335(C636E3R1P13T8), earlier than 9.1.0.345(C432E8R1P11T8), earlier than 9.1.0.336(C605E3R1P12T8) Columbia-AL10B: earlier than 9.1.0.333(C00E333R1P1T8) Columbia-L29D: earlier than 9.1.0.350(C461E3R1P11T8), earlier than 9.1.0.350(C185E3R1P12T8), earlier than 9.1.0.350(C10E5R1P14T8), earlier than 9.1.0.351(C432E5R1P13T8) Cornell-AL00A: earlier than 9.1.0.333(C00E333R1P1T8) Cornell-L29A: earlier than 9.1.0.328(C185E1R1P9T8), earlier than 9.1.0.328(C432E1R1P9T8), earlier than 9.1.0.330(C461E1R1P9T8), earlier than 9.1.0.328(C636E2R1P12T8) Emily-L09C: earlier than 9.1.0.336(C605E4R1P12T8), earlier than 9.1.0.311(C185E2R1P12T8), earlier than 9.1.0.345(C432E10R1P12T8) Emily-L29C: earlier than 9.1.0.311(C605E2R1P12T8), earlier than 9.1.0.311(C636E7R1P13T8), earlier than 9.1.0.311(C432E7R1P11T8) Ever-L29B: earlier than 9.1.0.311(C185E3R3P1), earlier than 9.1.0.310(C636E3R2P1), earlier than 9.1.0.310(C432E3R1P12) HUAWEI Mate 20: earlier than 9.1.0.131(C00E131R3P1) HUAWEI Mate 20 Pro: earlier than 9.1.0.310(C185E10R2P1) HUAWEI Mate 20 RS: earlier than 9.1.0.135(C786E133R3P1) HUAWEI Mate 20 X: earlier than 9.1.0.135(C00E133R2P1) HUAWEI P20: earlier than 9.1.0.333(C00E333R1P1T8) HUAWEI P20 Pro: earlier than 9.1.0.333(C00E333R1P1T8) HUAWEI P30: earlier than 9.1.0.193 HUAWEI P30 Pro: earlier than 9.1.0.186(C00E180R2P1) HUAWEI Y9 2019: earlier than 9.1.0.220(C605E3R1P1T8) HUAWEI nova lite 3: earlier than 9.1.0.305(C635E8R2P2) Honor 10 Lite: earlier than 9.1.0.283(C605E8R2P2) Honor 8X: earlier than 9.1.0.221(C461E2R1P1T8) Honor View 20: earlier than 9.1.0.238(C432E1R3P1) Jackman-L22: earlier than 9.1.0.247(C636E2R4P1T8) Paris-L21B: earlier than 9.1.0.331(C432E1R1P2T8) Paris-L21MEB: earlier than 9.1.0.331(C185E4R1P3T8) Paris-L29B: earlier than 9.1.0.331(C636E1R1P3T8) Sydney-AL00: earlier than 9.1.0.212(C00E62R1P7T8) Sydney-L21: earlier than 9.1.0.215(C432E1R1P1T8), earlier than 9.1.0.213(C185E1R1P1T8) Sydney-L21BR: earlier than 9.1.0.213(C185E1R1P2T8) Sydney-L22: earlier than 9.1.0.258(C636E1R1P1T8) Sydney-L22BR: earlier than 9.1.0.258(C636E1R1P1T8) SydneyM-AL00: earlier than 9.1.0.228(C00E78R1P7T8) SydneyM-L01: earlier than 9.1.0.215(C782E2R1P1T8), earlier than 9.1.0.213(C185E1R1P1T8), earlier than 9.1.0.270(C432E3R1P1T8) SydneyM-L03: earlier than 9.1.0.217(C605E1R1P1T8) SydneyM-L21: earlier than 9.1.0.221(C461E1R1P1T8), earlier than 9.1.0.215(C432E4R1P1T8) SydneyM-L22: earlier than 9.1.0.259(C185E1R1P2T8), earlier than 9.1.0.220(C635E1R1P2T8), earlier than 9.1.0.216(C569E1R1P1T8) SydneyM-L23: earlier than 9.1.0.226(C605E2R1P1T8) Yale-L21A: earlier than 9.1.0.154(C432E2R3P2), earlier than 9.1.0.154(C461E2R2P1), earlier than 9.1.0.154(C636E2R2P1) Honor 20: earlier than 9.1.0.152(C00E150R5P1) Honor Magic2: earlier than 10.0.0.187 Honor V20: earlier than 9.1.0.234(C00E234R4P3)
Severity ?
No CVSS data available.
CWE
  • Denial of Service
Assigner
References
Impacted products
Vendor Product Version
Huawei ALP-AL00B Affected: Versions earlier than 9.1.0.333(C00E333R2P1T8)
Create a notification for this product.
    Huawei ALP-L09 Affected: Versions earlier than 9.1.0.300(C432E4R1P9T8)
Create a notification for this product.
    Huawei ALP-L29 Affected: Versions earlier than 9.1.0.315(C636E5R1P13T8)
Create a notification for this product.
    Huawei BLA-L29C Affected: Versions earlier than 9.1.0.321(C636E4R1P14T8)
Affected: Versions earlier than 9.1.0.330(C432E6R1P12T8)
Affected: Versions earlier than 9.1.0.302(C635E4R1P13T8)
Create a notification for this product.
    Huawei Berkeley-AL20 Affected: Versions earlier than 9.1.0.333(C00E333R2P1T8)
Create a notification for this product.
    Huawei Berkeley-L09 Affected: Versions earlier than 9.1.0.350(C10E3R1P14T8)
Affected: Versions earlier than 9.1.0.351(C432E5R1P13T8)
Affected: Versions earlier than 9.1.0.350(C636E4R1P13T8)
Create a notification for this product.
    Huawei Charlotte-L09C Affected: Versions earlier than 9.1.0.311(C185E4R1P11T8)
Affected: Versions earlier than 9.1.0.345(C432E8R1P11T8)
Create a notification for this product.
    Huawei Charlotte-L29C Affected: Versions earlier than 9.1.0.325(C185E4R1P11T8)
Affected: Versions earlier than 9.1.0.335(C636E3R1P13T8)
Affected: Versions earlier than 9.1.0.345(C432E8R1P11T8)
Affected: Versions earlier than 9.1.0.336(C605E3R1P12T8)
Create a notification for this product.
    Huawei Columbia-AL10B Affected: Versions earlier than 9.1.0.333(C00E333R1P1T8)
Create a notification for this product.
    Huawei Columbia-L29D Affected: Versions earlier than 9.1.0.350(C461E3R1P11T8)
Affected: Versions earlier than 9.1.0.350(C185E3R1P12T8)
Affected: Versions earlier than 9.1.0.350(C10E5R1P14T8)
Affected: Versions earlier than 9.1.0.351(C432E5R1P13T8)
Create a notification for this product.
    Huawei Cornell-AL00A Affected: Versions earlier than 9.1.0.333(C00E333R1P1T8)
Create a notification for this product.
    Huawei Cornell-L29A Affected: Versions earlier than 9.1.0.328(C185E1R1P9T8)
Affected: Versions earlier than 9.1.0.328(C432E1R1P9T8)
Affected: Versions earlier than 9.1.0.330(C461E1R1P9T8)
Affected: Versions earlier than 9.1.0.328(C636E2R1P12T8)
Create a notification for this product.
    Huawei Emily-L09C Affected: Versions earlier than 9.1.0.336(C605E4R1P12T8)
Affected: Versions earlier than 9.1.0.311(C185E2R1P12T8)
Affected: Versions earlier than 9.1.0.345(C432E10R1P12T8)
Create a notification for this product.
    Huawei Emily-L29C Affected: Versions earlier than 9.1.0.311(C605E2R1P12T8)
Affected: Versions earlier than 9.1.0.311(C636E7R1P13T8)
Affected: Versions earlier than 9.1.0.311(C432E7R1P11T8)
Create a notification for this product.
    Huawei Ever-L29B Affected: Versions earlier than 9.1.0.311(C185E3R3P1)
Create a notification for this product.
    Huawei HUAWEI Mate 20 Affected: Versions earlier than 9.1.0.131(C00E131R3P1)
Create a notification for this product.
    Huawei HUAWEI Mate 20 Pro Affected: Versions earlier than 9.1.0.310(C185E10R2P1)
Create a notification for this product.
    Huawei HUAWEI Mate 20 RS Affected: Versions earlier than 9.1.0.135(C786E133R3P1)
Create a notification for this product.
    Huawei HUAWEI Mate 20 X Affected: Versions earlier than 9.1.0.135(C00E133R2P1)
Create a notification for this product.
    Huawei HUAWEI P20 Affected: Versions earlier than 9.1.0.333(C00E333R1P1T8)
Create a notification for this product.
    Huawei HUAWEI P20 Pro Affected: Versions earlier than 9.1.0.333(C00E333R1P1T8)
Create a notification for this product.
    Huawei HUAWEI P30 Affected: Versions earlier than 9.1.0.193
Create a notification for this product.
    Huawei HUAWEI P30 Pro Affected: Versions earlier than 9.1.0.186(C00E180R2P1)
Create a notification for this product.
    Huawei HUAWEI Y9 2019 Affected: Versions earlier than 9.1.0.220(C605E3R1P1T8)
Create a notification for this product.
    Huawei HUAWEI nova lite 3 Affected: Versions earlier than 9.1.0.305(C635E8R2P2)
Create a notification for this product.
    Huawei Honor 10 Lite Affected: Versions earlier than 9.1.0.283(C605E8R2P2)
Create a notification for this product.
    Huawei Honor 8X Affected: Versions earlier than 9.1.0.221(C461E2R1P1T8)
Create a notification for this product.
    Huawei Honor View 20 Affected: Versions earlier than 9.1.0.238(C432E1R3P1)
Create a notification for this product.
    Huawei Jackman-L22 Affected: Versions earlier than 9.1.0.247(C636E2R4P1T8)
Create a notification for this product.
    Huawei Paris-L21B Affected: Versions earlier than 9.1.0.331(C432E1R1P2T8)
Create a notification for this product.
    Huawei Paris-L21MEB Affected: Versions earlier than 9.1.0.331(C185E4R1P3T8)
Create a notification for this product.
    Huawei Paris-L29B Affected: Versions earlier than 9.1.0.331(C636E1R1P3T8)
Create a notification for this product.
    Huawei Sydney-AL00 Affected: Versions earlier than 9.1.0.212(C00E62R1P7T8)
Create a notification for this product.
    Huawei Sydney-L21 Affected: Versions earlier than 9.1.0.215(C432E1R1P1T8)
Affected: Versions earlier than 9.1.0.213(C185E1R1P1T8)
Create a notification for this product.
    Huawei Sydney-L21BR Affected: Versions earlier than 9.1.0.213(C185E1R1P2T8)
Create a notification for this product.
    Huawei Sydney-L22 Affected: Versions earlier than 9.1.0.258(C636E1R1P1T8)
Create a notification for this product.
    Huawei Sydney-L22BR Affected: Versions earlier than 9.1.0.258(C636E1R1P1T8)
Create a notification for this product.
    Huawei SydneyM-AL00 Affected: Versions earlier than 9.1.0.228(C00E78R1P7T8)
Create a notification for this product.
    Huawei SydneyM-L01 Affected: Versions earlier than 9.1.0.215(C782E2R1P1T8)
Affected: Versions earlier than 9.1.0.213(C185E1R1P1T8)
Affected: Versions earlier than 9.1.0.270(C432E3R1P1T8)
Create a notification for this product.
    Huawei SydneyM-L03 Affected: Versions earlier than 9.1.0.217(C605E1R1P1T8)
Create a notification for this product.
    Huawei SydneyM-L21 Affected: Versions earlier than 9.1.0.221(C461E1R1P1T8)
Affected: Versions earlier than 9.1.0.215(C432E4R1P1T8)
Create a notification for this product.
    Huawei SydneyM-L22 Affected: Versions earlier than 9.1.0.259(C185E1R1P2T8)
Affected: Versions earlier than 9.1.0.220(C635E1R1P2T8)
Affected: Versions earlier than 9.1.0.216(C569E1R1P1T8)
Create a notification for this product.
    Huawei SydneyM-L23 Affected: Versions earlier than 9.1.0.226(C605E2R1P1T8)
Create a notification for this product.
    Huawei Yale-L21A Affected: Versions earlier than 9.1.0.154(C432E2R3P2)
Affected: Versions earlier than 9.1.0.154(C461E2R2P1)
Affected: Versions earlier than 9.1.0.154(C636E2R2P1)
Create a notification for this product.
    Huawei Honor 20 Affected: Versions earlier than 9.1.0.152(C00E150R5P1)
Create a notification for this product.
    Huawei Honor Magic2 Affected: Versions earlier than 10.0.0.187
Create a notification for this product.
    Huawei Honor V20 Affected: Versions earlier than 9.1.0.234(C00E234R4P3)
Create a notification for this product.
Show details on NVD website
To clipboard 

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T19:54:53.218Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190814-01-mobile-en"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "ALP-AL00B",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.333(C00E333R2P1T8)"
            }
          ]
        },
        {
          "product": "ALP-L09",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.300(C432E4R1P9T8)"
            }
          ]
        },
        {
          "product": "ALP-L29",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.315(C636E5R1P13T8)"
            }
          ]
        },
        {
          "product": "BLA-L29C",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.321(C636E4R1P14T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.330(C432E6R1P12T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.302(C635E4R1P13T8)"
            }
          ]
        },
        {
          "product": "Berkeley-AL20",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.333(C00E333R2P1T8)"
            }
          ]
        },
        {
          "product": "Berkeley-L09",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.350(C10E3R1P14T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.351(C432E5R1P13T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.350(C636E4R1P13T8)"
            }
          ]
        },
        {
          "product": "Charlotte-L09C",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.311(C185E4R1P11T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.345(C432E8R1P11T8)"
            }
          ]
        },
        {
          "product": "Charlotte-L29C",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.325(C185E4R1P11T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.335(C636E3R1P13T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.345(C432E8R1P11T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.336(C605E3R1P12T8)"
            }
          ]
        },
        {
          "product": "Columbia-AL10B",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.333(C00E333R1P1T8)"
            }
          ]
        },
        {
          "product": "Columbia-L29D",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.350(C461E3R1P11T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.350(C185E3R1P12T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.350(C10E5R1P14T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.351(C432E5R1P13T8)"
            }
          ]
        },
        {
          "product": "Cornell-AL00A",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.333(C00E333R1P1T8)"
            }
          ]
        },
        {
          "product": "Cornell-L29A",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.328(C185E1R1P9T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.328(C432E1R1P9T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.330(C461E1R1P9T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.328(C636E2R1P12T8)"
            }
          ]
        },
        {
          "product": "Emily-L09C",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.336(C605E4R1P12T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.311(C185E2R1P12T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.345(C432E10R1P12T8)"
            }
          ]
        },
        {
          "product": "Emily-L29C",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.311(C605E2R1P12T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.311(C636E7R1P13T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.311(C432E7R1P11T8)"
            }
          ]
        },
        {
          "product": "Ever-L29B",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.311(C185E3R3P1)"
            }
          ]
        },
        {
          "product": "HUAWEI Mate 20",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.131(C00E131R3P1)"
            }
          ]
        },
        {
          "product": "HUAWEI Mate 20 Pro",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.310(C185E10R2P1)"
            }
          ]
        },
        {
          "product": "HUAWEI Mate 20 RS",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.135(C786E133R3P1)"
            }
          ]
        },
        {
          "product": "HUAWEI Mate 20 X",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.135(C00E133R2P1)"
            }
          ]
        },
        {
          "product": "HUAWEI P20",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.333(C00E333R1P1T8)"
            }
          ]
        },
        {
          "product": "HUAWEI P20 Pro",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.333(C00E333R1P1T8)"
            }
          ]
        },
        {
          "product": "HUAWEI P30",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.193"
            }
          ]
        },
        {
          "product": "HUAWEI P30 Pro",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.186(C00E180R2P1)"
            }
          ]
        },
        {
          "product": "HUAWEI Y9 2019",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.220(C605E3R1P1T8)"
            }
          ]
        },
        {
          "product": "HUAWEI nova lite 3",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.305(C635E8R2P2)"
            }
          ]
        },
        {
          "product": "Honor 10 Lite",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.283(C605E8R2P2)"
            }
          ]
        },
        {
          "product": "Honor 8X",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.221(C461E2R1P1T8)"
            }
          ]
        },
        {
          "product": "Honor View 20",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.238(C432E1R3P1)"
            }
          ]
        },
        {
          "product": "Jackman-L22",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.247(C636E2R4P1T8)"
            }
          ]
        },
        {
          "product": "Paris-L21B",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.331(C432E1R1P2T8)"
            }
          ]
        },
        {
          "product": "Paris-L21MEB",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.331(C185E4R1P3T8)"
            }
          ]
        },
        {
          "product": "Paris-L29B",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.331(C636E1R1P3T8)"
            }
          ]
        },
        {
          "product": "Sydney-AL00",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.212(C00E62R1P7T8)"
            }
          ]
        },
        {
          "product": "Sydney-L21",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.215(C432E1R1P1T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.213(C185E1R1P1T8)"
            }
          ]
        },
        {
          "product": "Sydney-L21BR",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.213(C185E1R1P2T8)"
            }
          ]
        },
        {
          "product": "Sydney-L22",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.258(C636E1R1P1T8)"
            }
          ]
        },
        {
          "product": "Sydney-L22BR",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.258(C636E1R1P1T8)"
            }
          ]
        },
        {
          "product": "SydneyM-AL00",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.228(C00E78R1P7T8)"
            }
          ]
        },
        {
          "product": "SydneyM-L01",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.215(C782E2R1P1T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.213(C185E1R1P1T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.270(C432E3R1P1T8)"
            }
          ]
        },
        {
          "product": "SydneyM-L03",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.217(C605E1R1P1T8)"
            }
          ]
        },
        {
          "product": "SydneyM-L21",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.221(C461E1R1P1T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.215(C432E4R1P1T8)"
            }
          ]
        },
        {
          "product": "SydneyM-L22",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.259(C185E1R1P2T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.220(C635E1R1P2T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.216(C569E1R1P1T8)"
            }
          ]
        },
        {
          "product": "SydneyM-L23",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.226(C605E2R1P1T8)"
            }
          ]
        },
        {
          "product": "Yale-L21A",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.154(C432E2R3P2)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.154(C461E2R2P1)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.154(C636E2R2P1)"
            }
          ]
        },
        {
          "product": "Honor 20",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.152(C00E150R5P1)"
            }
          ]
        },
        {
          "product": "Honor Magic2",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 10.0.0.187"
            }
          ]
        },
        {
          "product": "Honor V20",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.234(C00E234R4P3)"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "There are two denial of service vulnerabilities on some Huawei smartphones. An attacker may send specially crafted TD-SCDMA messages from a rogue base station to the affected devices. Due to insufficient input validation of two values when parsing the messages, successful exploit may cause device abnormal. This is 2 out of 2 vulnerabilities. Different than CVE-2020-5302. Affected products are: ALP-AL00B: earlier than 9.1.0.333(C00E333R2P1T8) ALP-L09: earlier than 9.1.0.300(C432E4R1P9T8) ALP-L29: earlier than 9.1.0.315(C636E5R1P13T8) BLA-L29C: earlier than 9.1.0.321(C636E4R1P14T8), earlier than 9.1.0.330(C432E6R1P12T8), earlier than 9.1.0.302(C635E4R1P13T8) Berkeley-AL20: earlier than 9.1.0.333(C00E333R2P1T8) Berkeley-L09: earlier than 9.1.0.350(C10E3R1P14T8), earlier than 9.1.0.351(C432E5R1P13T8), earlier than 9.1.0.350(C636E4R1P13T8) Charlotte-L09C: earlier than 9.1.0.311(C185E4R1P11T8), earlier than 9.1.0.345(C432E8R1P11T8) Charlotte-L29C: earlier than 9.1.0.325(C185E4R1P11T8), earlier than 9.1.0.335(C636E3R1P13T8), earlier than 9.1.0.345(C432E8R1P11T8), earlier than 9.1.0.336(C605E3R1P12T8) Columbia-AL10B: earlier than 9.1.0.333(C00E333R1P1T8) Columbia-L29D: earlier than 9.1.0.350(C461E3R1P11T8), earlier than 9.1.0.350(C185E3R1P12T8), earlier than 9.1.0.350(C10E5R1P14T8), earlier than 9.1.0.351(C432E5R1P13T8) Cornell-AL00A: earlier than 9.1.0.333(C00E333R1P1T8) Cornell-L29A: earlier than 9.1.0.328(C185E1R1P9T8), earlier than 9.1.0.328(C432E1R1P9T8), earlier than 9.1.0.330(C461E1R1P9T8), earlier than 9.1.0.328(C636E2R1P12T8) Emily-L09C: earlier than 9.1.0.336(C605E4R1P12T8), earlier than 9.1.0.311(C185E2R1P12T8), earlier than 9.1.0.345(C432E10R1P12T8) Emily-L29C: earlier than 9.1.0.311(C605E2R1P12T8), earlier than 9.1.0.311(C636E7R1P13T8), earlier than 9.1.0.311(C432E7R1P11T8) Ever-L29B: earlier than 9.1.0.311(C185E3R3P1), earlier than 9.1.0.310(C636E3R2P1), earlier than 9.1.0.310(C432E3R1P12) HUAWEI Mate 20: earlier than 9.1.0.131(C00E131R3P1) HUAWEI Mate 20 Pro: earlier than 9.1.0.310(C185E10R2P1) HUAWEI Mate 20 RS: earlier than 9.1.0.135(C786E133R3P1) HUAWEI Mate 20 X: earlier than 9.1.0.135(C00E133R2P1) HUAWEI P20: earlier than 9.1.0.333(C00E333R1P1T8) HUAWEI P20 Pro: earlier than 9.1.0.333(C00E333R1P1T8) HUAWEI P30: earlier than 9.1.0.193 HUAWEI P30 Pro: earlier than 9.1.0.186(C00E180R2P1) HUAWEI Y9 2019: earlier than 9.1.0.220(C605E3R1P1T8) HUAWEI nova lite 3: earlier than 9.1.0.305(C635E8R2P2) Honor 10 Lite: earlier than 9.1.0.283(C605E8R2P2) Honor 8X: earlier than 9.1.0.221(C461E2R1P1T8) Honor View 20: earlier than 9.1.0.238(C432E1R3P1) Jackman-L22: earlier than 9.1.0.247(C636E2R4P1T8) Paris-L21B: earlier than 9.1.0.331(C432E1R1P2T8) Paris-L21MEB: earlier than 9.1.0.331(C185E4R1P3T8) Paris-L29B: earlier than 9.1.0.331(C636E1R1P3T8) Sydney-AL00: earlier than 9.1.0.212(C00E62R1P7T8) Sydney-L21: earlier than 9.1.0.215(C432E1R1P1T8), earlier than 9.1.0.213(C185E1R1P1T8) Sydney-L21BR: earlier than 9.1.0.213(C185E1R1P2T8) Sydney-L22: earlier than 9.1.0.258(C636E1R1P1T8) Sydney-L22BR: earlier than 9.1.0.258(C636E1R1P1T8) SydneyM-AL00: earlier than 9.1.0.228(C00E78R1P7T8) SydneyM-L01: earlier than 9.1.0.215(C782E2R1P1T8), earlier than 9.1.0.213(C185E1R1P1T8), earlier than 9.1.0.270(C432E3R1P1T8) SydneyM-L03: earlier than 9.1.0.217(C605E1R1P1T8) SydneyM-L21: earlier than 9.1.0.221(C461E1R1P1T8), earlier than 9.1.0.215(C432E4R1P1T8) SydneyM-L22: earlier than 9.1.0.259(C185E1R1P2T8), earlier than 9.1.0.220(C635E1R1P2T8), earlier than 9.1.0.216(C569E1R1P1T8) SydneyM-L23: earlier than 9.1.0.226(C605E2R1P1T8) Yale-L21A: earlier than 9.1.0.154(C432E2R3P2), earlier than 9.1.0.154(C461E2R2P1), earlier than 9.1.0.154(C636E2R2P1) Honor 20: earlier than 9.1.0.152(C00E150R5P1) Honor Magic2: earlier than 10.0.0.187 Honor V20: earlier than 9.1.0.234(C00E234R4P3)"
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Denial of Service",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2020-04-27T20:01:02",
        "orgId": "25ac1063-e409-4190-8079-24548c77ea2e",
        "shortName": "huawei"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190814-01-mobile-en"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@huawei.com",
          "ID": "CVE-2019-5303",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "ALP-AL00B",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.333(C00E333R2P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "ALP-L09",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.300(C432E4R1P9T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "ALP-L29",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.315(C636E5R1P13T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "BLA-L29C",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.321(C636E4R1P14T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.330(C432E6R1P12T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.302(C635E4R1P13T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Berkeley-AL20",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.333(C00E333R2P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Berkeley-L09",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.350(C10E3R1P14T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.351(C432E5R1P13T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.350(C636E4R1P13T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Charlotte-L09C",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.311(C185E4R1P11T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.345(C432E8R1P11T8)"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Huawei"
              },
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Charlotte-L29C",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.325(C185E4R1P11T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.335(C636E3R1P13T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.345(C432E8R1P11T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.336(C605E3R1P12T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Columbia-AL10B",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.333(C00E333R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Columbia-L29D",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.350(C461E3R1P11T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.350(C185E3R1P12T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.350(C10E5R1P14T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.351(C432E5R1P13T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Cornell-AL00A",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.333(C00E333R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Cornell-L29A",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.328(C185E1R1P9T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.328(C432E1R1P9T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.330(C461E1R1P9T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.328(C636E2R1P12T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Emily-L09C",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.336(C605E4R1P12T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.311(C185E2R1P12T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.345(C432E10R1P12T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Emily-L29C",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.311(C605E2R1P12T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.311(C636E7R1P13T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.311(C432E7R1P11T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Ever-L29B",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.311(C185E3R3P1)"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Huawei"
              },
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "HUAWEI Mate 20",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.131(C00E131R3P1)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "HUAWEI Mate 20 Pro",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.310(C185E10R2P1)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "HUAWEI Mate 20 RS",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.135(C786E133R3P1)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "HUAWEI Mate 20 X",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.135(C00E133R2P1)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "HUAWEI P20",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.333(C00E333R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "HUAWEI P20 Pro",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.333(C00E333R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "HUAWEI P30",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.193"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "HUAWEI P30 Pro",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.186(C00E180R2P1)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "HUAWEI Y9 2019",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.220(C605E3R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "HUAWEI nova lite 3",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.305(C635E8R2P2)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Honor 10 Lite",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.283(C605E8R2P2)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Honor 8X",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.221(C461E2R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Honor View 20",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.238(C432E1R3P1)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Jackman-L22",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.247(C636E2R4P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Paris-L21B",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.331(C432E1R1P2T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Paris-L21MEB",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.331(C185E4R1P3T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Paris-L29B",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.331(C636E1R1P3T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Sydney-AL00",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.212(C00E62R1P7T8)"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Huawei"
              },
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Sydney-L21",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.215(C432E1R1P1T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.213(C185E1R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Sydney-L21BR",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.213(C185E1R1P2T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Sydney-L22",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.258(C636E1R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Sydney-L22BR",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.258(C636E1R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "SydneyM-AL00",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.228(C00E78R1P7T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "SydneyM-L01",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.215(C782E2R1P1T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.213(C185E1R1P1T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.270(C432E3R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "SydneyM-L03",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.217(C605E1R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "SydneyM-L21",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.221(C461E1R1P1T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.215(C432E4R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "SydneyM-L22",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.259(C185E1R1P2T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.220(C635E1R1P2T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.216(C569E1R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "SydneyM-L23",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.226(C605E2R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Yale-L21A",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.154(C432E2R3P2)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.154(C461E2R2P1)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.154(C636E2R2P1)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Honor 20",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.152(C00E150R5P1)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Honor Magic2",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 10.0.0.187"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Honor V20",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.234(C00E234R4P3)"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Huawei"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "There are two denial of service vulnerabilities on some Huawei smartphones. An attacker may send specially crafted TD-SCDMA messages from a rogue base station to the affected devices. Due to insufficient input validation of two values when parsing the messages, successful exploit may cause device abnormal. This is 2 out of 2 vulnerabilities. Different than CVE-2020-5302. Affected products are: ALP-AL00B: earlier than 9.1.0.333(C00E333R2P1T8) ALP-L09: earlier than 9.1.0.300(C432E4R1P9T8) ALP-L29: earlier than 9.1.0.315(C636E5R1P13T8) BLA-L29C: earlier than 9.1.0.321(C636E4R1P14T8), earlier than 9.1.0.330(C432E6R1P12T8), earlier than 9.1.0.302(C635E4R1P13T8) Berkeley-AL20: earlier than 9.1.0.333(C00E333R2P1T8) Berkeley-L09: earlier than 9.1.0.350(C10E3R1P14T8), earlier than 9.1.0.351(C432E5R1P13T8), earlier than 9.1.0.350(C636E4R1P13T8) Charlotte-L09C: earlier than 9.1.0.311(C185E4R1P11T8), earlier than 9.1.0.345(C432E8R1P11T8) Charlotte-L29C: earlier than 9.1.0.325(C185E4R1P11T8), earlier than 9.1.0.335(C636E3R1P13T8), earlier than 9.1.0.345(C432E8R1P11T8), earlier than 9.1.0.336(C605E3R1P12T8) Columbia-AL10B: earlier than 9.1.0.333(C00E333R1P1T8) Columbia-L29D: earlier than 9.1.0.350(C461E3R1P11T8), earlier than 9.1.0.350(C185E3R1P12T8), earlier than 9.1.0.350(C10E5R1P14T8), earlier than 9.1.0.351(C432E5R1P13T8) Cornell-AL00A: earlier than 9.1.0.333(C00E333R1P1T8) Cornell-L29A: earlier than 9.1.0.328(C185E1R1P9T8), earlier than 9.1.0.328(C432E1R1P9T8), earlier than 9.1.0.330(C461E1R1P9T8), earlier than 9.1.0.328(C636E2R1P12T8) Emily-L09C: earlier than 9.1.0.336(C605E4R1P12T8), earlier than 9.1.0.311(C185E2R1P12T8), earlier than 9.1.0.345(C432E10R1P12T8) Emily-L29C: earlier than 9.1.0.311(C605E2R1P12T8), earlier than 9.1.0.311(C636E7R1P13T8), earlier than 9.1.0.311(C432E7R1P11T8) Ever-L29B: earlier than 9.1.0.311(C185E3R3P1), earlier than 9.1.0.310(C636E3R2P1), earlier than 9.1.0.310(C432E3R1P12) HUAWEI Mate 20: earlier than 9.1.0.131(C00E131R3P1) HUAWEI Mate 20 Pro: earlier than 9.1.0.310(C185E10R2P1) HUAWEI Mate 20 RS: earlier than 9.1.0.135(C786E133R3P1) HUAWEI Mate 20 X: earlier than 9.1.0.135(C00E133R2P1) HUAWEI P20: earlier than 9.1.0.333(C00E333R1P1T8) HUAWEI P20 Pro: earlier than 9.1.0.333(C00E333R1P1T8) HUAWEI P30: earlier than 9.1.0.193 HUAWEI P30 Pro: earlier than 9.1.0.186(C00E180R2P1) HUAWEI Y9 2019: earlier than 9.1.0.220(C605E3R1P1T8) HUAWEI nova lite 3: earlier than 9.1.0.305(C635E8R2P2) Honor 10 Lite: earlier than 9.1.0.283(C605E8R2P2) Honor 8X: earlier than 9.1.0.221(C461E2R1P1T8) Honor View 20: earlier than 9.1.0.238(C432E1R3P1) Jackman-L22: earlier than 9.1.0.247(C636E2R4P1T8) Paris-L21B: earlier than 9.1.0.331(C432E1R1P2T8) Paris-L21MEB: earlier than 9.1.0.331(C185E4R1P3T8) Paris-L29B: earlier than 9.1.0.331(C636E1R1P3T8) Sydney-AL00: earlier than 9.1.0.212(C00E62R1P7T8) Sydney-L21: earlier than 9.1.0.215(C432E1R1P1T8), earlier than 9.1.0.213(C185E1R1P1T8) Sydney-L21BR: earlier than 9.1.0.213(C185E1R1P2T8) Sydney-L22: earlier than 9.1.0.258(C636E1R1P1T8) Sydney-L22BR: earlier than 9.1.0.258(C636E1R1P1T8) SydneyM-AL00: earlier than 9.1.0.228(C00E78R1P7T8) SydneyM-L01: earlier than 9.1.0.215(C782E2R1P1T8), earlier than 9.1.0.213(C185E1R1P1T8), earlier than 9.1.0.270(C432E3R1P1T8) SydneyM-L03: earlier than 9.1.0.217(C605E1R1P1T8) SydneyM-L21: earlier than 9.1.0.221(C461E1R1P1T8), earlier than 9.1.0.215(C432E4R1P1T8) SydneyM-L22: earlier than 9.1.0.259(C185E1R1P2T8), earlier than 9.1.0.220(C635E1R1P2T8), earlier than 9.1.0.216(C569E1R1P1T8) SydneyM-L23: earlier than 9.1.0.226(C605E2R1P1T8) Yale-L21A: earlier than 9.1.0.154(C432E2R3P2), earlier than 9.1.0.154(C461E2R2P1), earlier than 9.1.0.154(C636E2R2P1) Honor 20: earlier than 9.1.0.152(C00E150R5P1) Honor Magic2: earlier than 10.0.0.187 Honor V20: earlier than 9.1.0.234(C00E234R4P3)"
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Denial of Service"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190814-01-mobile-en",
              "refsource": "CONFIRM",
              "url": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190814-01-mobile-en"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "25ac1063-e409-4190-8079-24548c77ea2e",
    "assignerShortName": "huawei",
    "cveId": "CVE-2019-5303",
    "datePublished": "2020-04-27T20:01:02",
    "dateReserved": "2019-01-04T00:00:00",
    "dateUpdated": "2024-08-04T19:54:53.218Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2019-5302 (GCVE-0-2019-5302)

Vulnerability from cvelistv5 – Published: 2020-04-27 19:50 – Updated: 2024-08-04 19:54
VLAI?
Summary
There are two denial of service vulnerabilities on some Huawei smartphones. An attacker may send specially crafted TD-SCDMA messages from a rogue base station to the affected devices. Due to insufficient input validation of two values when parsing the messages, successful exploit may cause device abnormal. This is 1 out of 2 vulnerabilities. Different than CVE-2020-5303. Affected products are: ALP-AL00B: earlier than 9.1.0.333(C00E333R2P1T8) ALP-L09: earlier than 9.1.0.300(C432E4R1P9T8) ALP-L29: earlier than 9.1.0.315(C636E5R1P13T8) BLA-L29C: earlier than 9.1.0.321(C636E4R1P14T8), earlier than 9.1.0.330(C432E6R1P12T8), earlier than 9.1.0.302(C635E4R1P13T8) Berkeley-AL20: earlier than 9.1.0.333(C00E333R2P1T8) Berkeley-L09: earlier than 9.1.0.350(C10E3R1P14T8), earlier than 9.1.0.351(C432E5R1P13T8), earlier than 9.1.0.350(C636E4R1P13T8) Charlotte-L09C: earlier than 9.1.0.311(C185E4R1P11T8), earlier than 9.1.0.345(C432E8R1P11T8) Charlotte-L29C: earlier than 9.1.0.325(C185E4R1P11T8), earlier than 9.1.0.335(C636E3R1P13T8), earlier than 9.1.0.345(C432E8R1P11T8), earlier than 9.1.0.336(C605E3R1P12T8) Columbia-AL10B: earlier than 9.1.0.333(C00E333R1P1T8) Columbia-L29D: earlier than 9.1.0.350(C461E3R1P11T8), earlier than 9.1.0.350(C185E3R1P12T8), earlier than 9.1.0.350(C10E5R1P14T8), earlier than 9.1.0.351(C432E5R1P13T8) Cornell-AL00A: earlier than 9.1.0.333(C00E333R1P1T8) Cornell-L29A: earlier than 9.1.0.328(C185E1R1P9T8), earlier than 9.1.0.328(C432E1R1P9T8), earlier than 9.1.0.330(C461E1R1P9T8), earlier than 9.1.0.328(C636E2R1P12T8) Emily-L09C: earlier than 9.1.0.336(C605E4R1P12T8), earlier than 9.1.0.311(C185E2R1P12T8), earlier than 9.1.0.345(C432E10R1P12T8) Emily-L29C: earlier than 9.1.0.311(C605E2R1P12T8), earlier than 9.1.0.311(C636E7R1P13T8), earlier than 9.1.0.311(C432E7R1P11T8) Ever-L29B: earlier than 9.1.0.311(C185E3R3P1), earlier than 9.1.0.310(C636E3R2P1), earlier than 9.1.0.310(C432E3R1P12) HUAWEI Mate 20: earlier than 9.1.0.131(C00E131R3P1) HUAWEI Mate 20 Pro: earlier than 9.1.0.310(C185E10R2P1) HUAWEI Mate 20 RS: earlier than 9.1.0.135(C786E133R3P1) HUAWEI Mate 20 X: earlier than 9.1.0.135(C00E133R2P1) HUAWEI P20: earlier than 9.1.0.333(C00E333R1P1T8) HUAWEI P20 Pro: earlier than 9.1.0.333(C00E333R1P1T8) HUAWEI P30: earlier than 9.1.0.193 HUAWEI P30 Pro: earlier than 9.1.0.186(C00E180R2P1) HUAWEI Y9 2019: earlier than 9.1.0.220(C605E3R1P1T8) HUAWEI nova lite 3: earlier than 9.1.0.305(C635E8R2P2) Honor 10 Lite: earlier than 9.1.0.283(C605E8R2P2) Honor 8X: earlier than 9.1.0.221(C461E2R1P1T8) Honor View 20: earlier than 9.1.0.238(C432E1R3P1) Jackman-L22: earlier than 9.1.0.247(C636E2R4P1T8) Paris-L21B: earlier than 9.1.0.331(C432E1R1P2T8) Paris-L21MEB: earlier than 9.1.0.331(C185E4R1P3T8) Paris-L29B: earlier than 9.1.0.331(C636E1R1P3T8) Sydney-AL00: earlier than 9.1.0.212(C00E62R1P7T8) Sydney-L21: earlier than 9.1.0.215(C432E1R1P1T8), earlier than 9.1.0.213(C185E1R1P1T8) Sydney-L21BR: earlier than 9.1.0.213(C185E1R1P2T8) Sydney-L22: earlier than 9.1.0.258(C636E1R1P1T8) Sydney-L22BR: earlier than 9.1.0.258(C636E1R1P1T8) SydneyM-AL00: earlier than 9.1.0.228(C00E78R1P7T8) SydneyM-L01: earlier than 9.1.0.215(C782E2R1P1T8), earlier than 9.1.0.213(C185E1R1P1T8), earlier than 9.1.0.270(C432E3R1P1T8) SydneyM-L03: earlier than 9.1.0.217(C605E1R1P1T8) SydneyM-L21: earlier than 9.1.0.221(C461E1R1P1T8), earlier than 9.1.0.215(C432E4R1P1T8) SydneyM-L22: earlier than 9.1.0.259(C185E1R1P2T8), earlier than 9.1.0.220(C635E1R1P2T8), earlier than 9.1.0.216(C569E1R1P1T8) SydneyM-L23: earlier than 9.1.0.226(C605E2R1P1T8) Yale-L21A: earlier than 9.1.0.154(C432E2R3P2), earlier than 9.1.0.154(C461E2R2P1), earlier than 9.1.0.154(C636E2R2P1) Honor 20: earlier than 9.1.0.152(C00E150R5P1) Honor Magic2: earlier than 10.0.0.187 Honor V20: earlier than 9.1.0.234(C00E234R4P3)
Severity ?
No CVSS data available.
CWE
  • Denial of Service
Assigner
References
Impacted products
Vendor Product Version
Huawei Sydney-L21 Affected: Versions earlier than 9.1.0.215(C432E1R1P1T8)
Affected: Versions earlier than 9.1.0.213(C185E1R1P1T8)
Create a notification for this product.
    Huawei Sydney-L21BR Affected: Versions earlier than 9.1.0.213(C185E1R1P2T8)
Create a notification for this product.
    Huawei Sydney-L22 Affected: Versions earlier than 9.1.0.258(C636E1R1P1T8)
Create a notification for this product.
    Huawei Sydney-L22BR Affected: Versions earlier than 9.1.0.258(C636E1R1P1T8)
Create a notification for this product.
    Huawei SydneyM-AL00 Affected: Versions earlier than 9.1.0.228(C00E78R1P7T8)
Create a notification for this product.
    Huawei SydneyM-L01 Affected: Versions earlier than 9.1.0.215(C782E2R1P1T8)
Affected: Versions earlier than 9.1.0.213(C185E1R1P1T8)
Affected: Versions earlier than 9.1.0.270(C432E3R1P1T8)
Create a notification for this product.
    Huawei SydneyM-L03 Affected: Versions earlier than 9.1.0.217(C605E1R1P1T8)
Create a notification for this product.
    Huawei SydneyM-L21 Affected: Versions earlier than 9.1.0.221(C461E1R1P1T8)
Affected: Versions earlier than 9.1.0.215(C432E4R1P1T8)
Create a notification for this product.
    Huawei SydneyM-L22 Affected: Versions earlier than 9.1.0.259(C185E1R1P2T8)
Affected: Versions earlier than 9.1.0.220(C635E1R1P2T8)
Affected: Versions earlier than 9.1.0.216(C569E1R1P1T8)
Create a notification for this product.
    Huawei SydneyM-L23 Affected: Versions earlier than 9.1.0.226(C605E2R1P1T8)
Create a notification for this product.
    Huawei Yale-L21A Affected: Versions earlier than 9.1.0.154(C432E2R3P2)
Affected: Versions earlier than 9.1.0.154(C461E2R2P1)
Affected: Versions earlier than 9.1.0.154(C636E2R2P1)
Create a notification for this product.
    Huawei Honor 20 Affected: Versions earlier than 9.1.0.152(C00E150R5P1)
Create a notification for this product.
    Huawei Honor Magic2 Affected: Versions earlier than 10.0.0.187
Create a notification for this product.
    Huawei Honor V20 Affected: Versions earlier than 9.1.0.234(C00E234R4P3)
Create a notification for this product.
    Huawei HUAWEI Mate 20 Affected: Versions earlier than 9.1.0.131(C00E131R3P1)
Create a notification for this product.
    Huawei HUAWEI Mate 20 Pro Affected: Versions earlier than 9.1.0.310(C185E10R2P1)
Create a notification for this product.
    Huawei HUAWEI Mate 20 RS Affected: Versions earlier than 9.1.0.135(C786E133R3P1)
Create a notification for this product.
    Huawei HUAWEI Mate 20 X Affected: Versions earlier than 9.1.0.135(C00E133R2P1)
Create a notification for this product.
    Huawei HUAWEI P20 Affected: Versions earlier than 9.1.0.333(C00E333R1P1T8)
Create a notification for this product.
    Huawei HUAWEI P20 Pro Affected: Versions earlier than 9.1.0.333(C00E333R1P1T8)
Create a notification for this product.
    Huawei HUAWEI P30 Affected: Versions earlier than 9.1.0.193
Create a notification for this product.
    Huawei HUAWEI P30 Pro Affected: Versions earlier than 9.1.0.186(C00E180R2P1)
Create a notification for this product.
    Huawei HUAWEI Y9 2019 Affected: Versions earlier than 9.1.0.220(C605E3R1P1T8)
Create a notification for this product.
    Huawei HUAWEI nova lite 3 Affected: Versions earlier than 9.1.0.305(C635E8R2P2)
Create a notification for this product.
    Huawei Honor 10 Lite Affected: Versions earlier than 9.1.0.283(C605E8R2P2)
Create a notification for this product.
    Huawei Honor 8X Affected: Versions earlier than 9.1.0.221(C461E2R1P1T8)
Create a notification for this product.
    Huawei Honor View 20 Affected: Versions earlier than 9.1.0.238(C432E1R3P1)
Create a notification for this product.
    Huawei Jackman-L22 Affected: Versions earlier than 9.1.0.247(C636E2R4P1T8)
Create a notification for this product.
    Huawei Paris-L21B Affected: Versions earlier than 9.1.0.331(C432E1R1P2T8)
Create a notification for this product.
    Huawei Paris-L21MEB Affected: Versions earlier than 9.1.0.331(C185E4R1P3T8)
Create a notification for this product.
    Huawei Paris-L29B Affected: Versions earlier than 9.1.0.331(C636E1R1P3T8)
Create a notification for this product.
    Huawei Sydney-AL00 Affected: Versions earlier than 9.1.0.212(C00E62R1P7T8)
Create a notification for this product.
    Huawei Charlotte-L29C Affected: Versions earlier than 9.1.0.325(C185E4R1P11T8)
Affected: Versions earlier than 9.1.0.335(C636E3R1P13T8)
Affected: Versions earlier than 9.1.0.345(C432E8R1P11T8)
Affected: Versions earlier than 9.1.0.336(C605E3R1P12T8)
Create a notification for this product.
    Huawei Columbia-AL10B Affected: Versions earlier than 9.1.0.333(C00E333R1P1T8)
Create a notification for this product.
    Huawei Columbia-L29D Affected: Versions earlier than 9.1.0.350(C461E3R1P11T8)
Affected: Versions earlier than 9.1.0.350(C185E3R1P12T8)
Affected: Versions earlier than 9.1.0.350(C10E5R1P14T8)
Affected: Versions earlier than 9.1.0.351(C432E5R1P13T8)
Create a notification for this product.
    Huawei Cornell-AL00A Affected: Versions earlier than 9.1.0.333(C00E333R1P1T8)
Create a notification for this product.
    Huawei Cornell-L29A Affected: Versions earlier than 9.1.0.328(C185E1R1P9T8)
Affected: Versions earlier than 9.1.0.328(C432E1R1P9T8)
Affected: Versions earlier than 9.1.0.330(C461E1R1P9T8)
Affected: Versions earlier than 9.1.0.328(C636E2R1P12T8)
Create a notification for this product.
    Huawei Emily-L09C Affected: Versions earlier than 9.1.0.336(C605E4R1P12T8)
Affected: Versions earlier than 9.1.0.311(C185E2R1P12T8)
Affected: Versions earlier than 9.1.0.345(C432E10R1P12T8)
Create a notification for this product.
    Huawei Emily-L29C Affected: Versions earlier than 9.1.0.311(C605E2R1P12T8)
Affected: Versions earlier than 9.1.0.311(C636E7R1P13T8)
Affected: Versions earlier than 9.1.0.311(C432E7R1P11T8)
Create a notification for this product.
    Huawei Ever-L29B Affected: Versions earlier than 9.1.0.311(C185E3R3P1)
Create a notification for this product.
    Huawei ALP-AL00B Affected: Versions earlier than 9.1.0.333(C00E333R2P1T8)
Create a notification for this product.
    Huawei ALP-L09 Affected: Versions earlier than 9.1.0.300(C432E4R1P9T8)
Create a notification for this product.
    Huawei ALP-L29 Affected: Versions earlier than 9.1.0.315(C636E5R1P13T8)
Create a notification for this product.
    Huawei BLA-L29C Affected: Versions earlier than 9.1.0.321(C636E4R1P14T8)
Affected: Versions earlier than 9.1.0.330(C432E6R1P12T8)
Affected: Versions earlier than 9.1.0.302(C635E4R1P13T8)
Create a notification for this product.
    Huawei Berkeley-AL20 Affected: Versions earlier than 9.1.0.333(C00E333R2P1T8)
Create a notification for this product.
    Huawei Berkeley-L09 Affected: Versions earlier than 9.1.0.350(C10E3R1P14T8)
Affected: Versions earlier than 9.1.0.351(C432E5R1P13T8)
Affected: Versions earlier than 9.1.0.350(C636E4R1P13T8)
Create a notification for this product.
    Huawei Charlotte-L09C Affected: Versions earlier than 9.1.0.311(C185E4R1P11T8)
Affected: Versions earlier than 9.1.0.345(C432E8R1P11T8)
Create a notification for this product.
Show details on NVD website
To clipboard 

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T19:54:52.990Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190814-01-mobile-en"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Sydney-L21",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.215(C432E1R1P1T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.213(C185E1R1P1T8)"
            }
          ]
        },
        {
          "product": "Sydney-L21BR",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.213(C185E1R1P2T8)"
            }
          ]
        },
        {
          "product": "Sydney-L22",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.258(C636E1R1P1T8)"
            }
          ]
        },
        {
          "product": "Sydney-L22BR",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.258(C636E1R1P1T8)"
            }
          ]
        },
        {
          "product": "SydneyM-AL00",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.228(C00E78R1P7T8)"
            }
          ]
        },
        {
          "product": "SydneyM-L01",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.215(C782E2R1P1T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.213(C185E1R1P1T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.270(C432E3R1P1T8)"
            }
          ]
        },
        {
          "product": "SydneyM-L03",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.217(C605E1R1P1T8)"
            }
          ]
        },
        {
          "product": "SydneyM-L21",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.221(C461E1R1P1T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.215(C432E4R1P1T8)"
            }
          ]
        },
        {
          "product": "SydneyM-L22",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.259(C185E1R1P2T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.220(C635E1R1P2T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.216(C569E1R1P1T8)"
            }
          ]
        },
        {
          "product": "SydneyM-L23",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.226(C605E2R1P1T8)"
            }
          ]
        },
        {
          "product": "Yale-L21A",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.154(C432E2R3P2)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.154(C461E2R2P1)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.154(C636E2R2P1)"
            }
          ]
        },
        {
          "product": "Honor 20",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.152(C00E150R5P1)"
            }
          ]
        },
        {
          "product": "Honor Magic2",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 10.0.0.187"
            }
          ]
        },
        {
          "product": "Honor V20",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.234(C00E234R4P3)"
            }
          ]
        },
        {
          "product": "HUAWEI Mate 20",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.131(C00E131R3P1)"
            }
          ]
        },
        {
          "product": "HUAWEI Mate 20 Pro",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.310(C185E10R2P1)"
            }
          ]
        },
        {
          "product": "HUAWEI Mate 20 RS",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.135(C786E133R3P1)"
            }
          ]
        },
        {
          "product": "HUAWEI Mate 20 X",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.135(C00E133R2P1)"
            }
          ]
        },
        {
          "product": "HUAWEI P20",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.333(C00E333R1P1T8)"
            }
          ]
        },
        {
          "product": "HUAWEI P20 Pro",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.333(C00E333R1P1T8)"
            }
          ]
        },
        {
          "product": "HUAWEI P30",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.193"
            }
          ]
        },
        {
          "product": "HUAWEI P30 Pro",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.186(C00E180R2P1)"
            }
          ]
        },
        {
          "product": "HUAWEI Y9 2019",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.220(C605E3R1P1T8)"
            }
          ]
        },
        {
          "product": "HUAWEI nova lite 3",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.305(C635E8R2P2)"
            }
          ]
        },
        {
          "product": "Honor 10 Lite",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.283(C605E8R2P2)"
            }
          ]
        },
        {
          "product": "Honor 8X",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.221(C461E2R1P1T8)"
            }
          ]
        },
        {
          "product": "Honor View 20",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.238(C432E1R3P1)"
            }
          ]
        },
        {
          "product": "Jackman-L22",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.247(C636E2R4P1T8)"
            }
          ]
        },
        {
          "product": "Paris-L21B",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.331(C432E1R1P2T8)"
            }
          ]
        },
        {
          "product": "Paris-L21MEB",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.331(C185E4R1P3T8)"
            }
          ]
        },
        {
          "product": "Paris-L29B",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.331(C636E1R1P3T8)"
            }
          ]
        },
        {
          "product": "Sydney-AL00",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.212(C00E62R1P7T8)"
            }
          ]
        },
        {
          "product": "Charlotte-L29C",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.325(C185E4R1P11T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.335(C636E3R1P13T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.345(C432E8R1P11T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.336(C605E3R1P12T8)"
            }
          ]
        },
        {
          "product": "Columbia-AL10B",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.333(C00E333R1P1T8)"
            }
          ]
        },
        {
          "product": "Columbia-L29D",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.350(C461E3R1P11T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.350(C185E3R1P12T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.350(C10E5R1P14T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.351(C432E5R1P13T8)"
            }
          ]
        },
        {
          "product": "Cornell-AL00A",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.333(C00E333R1P1T8)"
            }
          ]
        },
        {
          "product": "Cornell-L29A",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.328(C185E1R1P9T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.328(C432E1R1P9T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.330(C461E1R1P9T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.328(C636E2R1P12T8)"
            }
          ]
        },
        {
          "product": "Emily-L09C",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.336(C605E4R1P12T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.311(C185E2R1P12T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.345(C432E10R1P12T8)"
            }
          ]
        },
        {
          "product": "Emily-L29C",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.311(C605E2R1P12T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.311(C636E7R1P13T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.311(C432E7R1P11T8)"
            }
          ]
        },
        {
          "product": "Ever-L29B",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.311(C185E3R3P1)"
            }
          ]
        },
        {
          "product": "ALP-AL00B",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.333(C00E333R2P1T8)"
            }
          ]
        },
        {
          "product": "ALP-L09",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.300(C432E4R1P9T8)"
            }
          ]
        },
        {
          "product": "ALP-L29",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.315(C636E5R1P13T8)"
            }
          ]
        },
        {
          "product": "BLA-L29C",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.321(C636E4R1P14T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.330(C432E6R1P12T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.302(C635E4R1P13T8)"
            }
          ]
        },
        {
          "product": "Berkeley-AL20",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.333(C00E333R2P1T8)"
            }
          ]
        },
        {
          "product": "Berkeley-L09",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.350(C10E3R1P14T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.351(C432E5R1P13T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.350(C636E4R1P13T8)"
            }
          ]
        },
        {
          "product": "Charlotte-L09C",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.311(C185E4R1P11T8)"
            },
            {
              "status": "affected",
              "version": "Versions earlier than 9.1.0.345(C432E8R1P11T8)"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "There are two denial of service vulnerabilities on some Huawei smartphones. An attacker may send specially crafted TD-SCDMA messages from a rogue base station to the affected devices. Due to insufficient input validation of two values when parsing the messages, successful exploit may cause device abnormal. This is 1 out of 2 vulnerabilities. Different than CVE-2020-5303. Affected products are: ALP-AL00B: earlier than 9.1.0.333(C00E333R2P1T8) ALP-L09: earlier than 9.1.0.300(C432E4R1P9T8) ALP-L29: earlier than 9.1.0.315(C636E5R1P13T8) BLA-L29C: earlier than 9.1.0.321(C636E4R1P14T8), earlier than 9.1.0.330(C432E6R1P12T8), earlier than 9.1.0.302(C635E4R1P13T8) Berkeley-AL20: earlier than 9.1.0.333(C00E333R2P1T8) Berkeley-L09: earlier than 9.1.0.350(C10E3R1P14T8), earlier than 9.1.0.351(C432E5R1P13T8), earlier than 9.1.0.350(C636E4R1P13T8) Charlotte-L09C: earlier than 9.1.0.311(C185E4R1P11T8), earlier than 9.1.0.345(C432E8R1P11T8) Charlotte-L29C: earlier than 9.1.0.325(C185E4R1P11T8), earlier than 9.1.0.335(C636E3R1P13T8), earlier than 9.1.0.345(C432E8R1P11T8), earlier than 9.1.0.336(C605E3R1P12T8) Columbia-AL10B: earlier than 9.1.0.333(C00E333R1P1T8) Columbia-L29D: earlier than 9.1.0.350(C461E3R1P11T8), earlier than 9.1.0.350(C185E3R1P12T8), earlier than 9.1.0.350(C10E5R1P14T8), earlier than 9.1.0.351(C432E5R1P13T8) Cornell-AL00A: earlier than 9.1.0.333(C00E333R1P1T8) Cornell-L29A: earlier than 9.1.0.328(C185E1R1P9T8), earlier than 9.1.0.328(C432E1R1P9T8), earlier than 9.1.0.330(C461E1R1P9T8), earlier than 9.1.0.328(C636E2R1P12T8) Emily-L09C: earlier than 9.1.0.336(C605E4R1P12T8), earlier than 9.1.0.311(C185E2R1P12T8), earlier than 9.1.0.345(C432E10R1P12T8) Emily-L29C: earlier than 9.1.0.311(C605E2R1P12T8), earlier than 9.1.0.311(C636E7R1P13T8), earlier than 9.1.0.311(C432E7R1P11T8) Ever-L29B: earlier than 9.1.0.311(C185E3R3P1), earlier than 9.1.0.310(C636E3R2P1), earlier than 9.1.0.310(C432E3R1P12) HUAWEI Mate 20: earlier than 9.1.0.131(C00E131R3P1) HUAWEI Mate 20 Pro: earlier than 9.1.0.310(C185E10R2P1) HUAWEI Mate 20 RS: earlier than 9.1.0.135(C786E133R3P1) HUAWEI Mate 20 X: earlier than 9.1.0.135(C00E133R2P1) HUAWEI P20: earlier than 9.1.0.333(C00E333R1P1T8) HUAWEI P20 Pro: earlier than 9.1.0.333(C00E333R1P1T8) HUAWEI P30: earlier than 9.1.0.193 HUAWEI P30 Pro: earlier than 9.1.0.186(C00E180R2P1) HUAWEI Y9 2019: earlier than 9.1.0.220(C605E3R1P1T8) HUAWEI nova lite 3: earlier than 9.1.0.305(C635E8R2P2) Honor 10 Lite: earlier than 9.1.0.283(C605E8R2P2) Honor 8X: earlier than 9.1.0.221(C461E2R1P1T8) Honor View 20: earlier than 9.1.0.238(C432E1R3P1) Jackman-L22: earlier than 9.1.0.247(C636E2R4P1T8) Paris-L21B: earlier than 9.1.0.331(C432E1R1P2T8) Paris-L21MEB: earlier than 9.1.0.331(C185E4R1P3T8) Paris-L29B: earlier than 9.1.0.331(C636E1R1P3T8) Sydney-AL00: earlier than 9.1.0.212(C00E62R1P7T8) Sydney-L21: earlier than 9.1.0.215(C432E1R1P1T8), earlier than 9.1.0.213(C185E1R1P1T8) Sydney-L21BR: earlier than 9.1.0.213(C185E1R1P2T8) Sydney-L22: earlier than 9.1.0.258(C636E1R1P1T8) Sydney-L22BR: earlier than 9.1.0.258(C636E1R1P1T8) SydneyM-AL00: earlier than 9.1.0.228(C00E78R1P7T8) SydneyM-L01: earlier than 9.1.0.215(C782E2R1P1T8), earlier than 9.1.0.213(C185E1R1P1T8), earlier than 9.1.0.270(C432E3R1P1T8) SydneyM-L03: earlier than 9.1.0.217(C605E1R1P1T8) SydneyM-L21: earlier than 9.1.0.221(C461E1R1P1T8), earlier than 9.1.0.215(C432E4R1P1T8) SydneyM-L22: earlier than 9.1.0.259(C185E1R1P2T8), earlier than 9.1.0.220(C635E1R1P2T8), earlier than 9.1.0.216(C569E1R1P1T8) SydneyM-L23: earlier than 9.1.0.226(C605E2R1P1T8) Yale-L21A: earlier than 9.1.0.154(C432E2R3P2), earlier than 9.1.0.154(C461E2R2P1), earlier than 9.1.0.154(C636E2R2P1) Honor 20: earlier than 9.1.0.152(C00E150R5P1) Honor Magic2: earlier than 10.0.0.187 Honor V20: earlier than 9.1.0.234(C00E234R4P3)"
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Denial of Service",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2020-04-27T19:50:50",
        "orgId": "25ac1063-e409-4190-8079-24548c77ea2e",
        "shortName": "huawei"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190814-01-mobile-en"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@huawei.com",
          "ID": "CVE-2019-5302",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Sydney-L21",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.215(C432E1R1P1T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.213(C185E1R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Sydney-L21BR",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.213(C185E1R1P2T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Sydney-L22",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.258(C636E1R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Sydney-L22BR",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.258(C636E1R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "SydneyM-AL00",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.228(C00E78R1P7T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "SydneyM-L01",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.215(C782E2R1P1T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.213(C185E1R1P1T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.270(C432E3R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "SydneyM-L03",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.217(C605E1R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "SydneyM-L21",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.221(C461E1R1P1T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.215(C432E4R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "SydneyM-L22",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.259(C185E1R1P2T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.220(C635E1R1P2T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.216(C569E1R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "SydneyM-L23",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.226(C605E2R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Yale-L21A",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.154(C432E2R3P2)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.154(C461E2R2P1)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.154(C636E2R2P1)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Honor 20",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.152(C00E150R5P1)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Honor Magic2",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 10.0.0.187"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Honor V20",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.234(C00E234R4P3)"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Huawei"
              },
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "HUAWEI Mate 20",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.131(C00E131R3P1)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "HUAWEI Mate 20 Pro",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.310(C185E10R2P1)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "HUAWEI Mate 20 RS",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.135(C786E133R3P1)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "HUAWEI Mate 20 X",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.135(C00E133R2P1)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "HUAWEI P20",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.333(C00E333R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "HUAWEI P20 Pro",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.333(C00E333R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "HUAWEI P30",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.193"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "HUAWEI P30 Pro",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.186(C00E180R2P1)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "HUAWEI Y9 2019",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.220(C605E3R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "HUAWEI nova lite 3",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.305(C635E8R2P2)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Honor 10 Lite",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.283(C605E8R2P2)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Honor 8X",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.221(C461E2R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Honor View 20",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.238(C432E1R3P1)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Jackman-L22",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.247(C636E2R4P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Paris-L21B",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.331(C432E1R1P2T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Paris-L21MEB",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.331(C185E4R1P3T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Paris-L29B",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.331(C636E1R1P3T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Sydney-AL00",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.212(C00E62R1P7T8)"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Huawei"
              },
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Charlotte-L29C",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.325(C185E4R1P11T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.335(C636E3R1P13T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.345(C432E8R1P11T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.336(C605E3R1P12T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Columbia-AL10B",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.333(C00E333R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Columbia-L29D",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.350(C461E3R1P11T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.350(C185E3R1P12T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.350(C10E5R1P14T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.351(C432E5R1P13T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Cornell-AL00A",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.333(C00E333R1P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Cornell-L29A",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.328(C185E1R1P9T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.328(C432E1R1P9T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.330(C461E1R1P9T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.328(C636E2R1P12T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Emily-L09C",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.336(C605E4R1P12T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.311(C185E2R1P12T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.345(C432E10R1P12T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Emily-L29C",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.311(C605E2R1P12T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.311(C636E7R1P13T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.311(C432E7R1P11T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Ever-L29B",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.311(C185E3R3P1)"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Huawei"
              },
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "ALP-AL00B",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.333(C00E333R2P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "ALP-L09",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.300(C432E4R1P9T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "ALP-L29",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.315(C636E5R1P13T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "BLA-L29C",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.321(C636E4R1P14T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.330(C432E6R1P12T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.302(C635E4R1P13T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Berkeley-AL20",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.333(C00E333R2P1T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Berkeley-L09",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.350(C10E3R1P14T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.351(C432E5R1P13T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.350(C636E4R1P13T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Charlotte-L09C",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier than 9.1.0.311(C185E4R1P11T8)"
                          },
                          {
                            "version_value": "Versions earlier than 9.1.0.345(C432E8R1P11T8)"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Huawei"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "There are two denial of service vulnerabilities on some Huawei smartphones. An attacker may send specially crafted TD-SCDMA messages from a rogue base station to the affected devices. Due to insufficient input validation of two values when parsing the messages, successful exploit may cause device abnormal. This is 1 out of 2 vulnerabilities. Different than CVE-2020-5303. Affected products are: ALP-AL00B: earlier than 9.1.0.333(C00E333R2P1T8) ALP-L09: earlier than 9.1.0.300(C432E4R1P9T8) ALP-L29: earlier than 9.1.0.315(C636E5R1P13T8) BLA-L29C: earlier than 9.1.0.321(C636E4R1P14T8), earlier than 9.1.0.330(C432E6R1P12T8), earlier than 9.1.0.302(C635E4R1P13T8) Berkeley-AL20: earlier than 9.1.0.333(C00E333R2P1T8) Berkeley-L09: earlier than 9.1.0.350(C10E3R1P14T8), earlier than 9.1.0.351(C432E5R1P13T8), earlier than 9.1.0.350(C636E4R1P13T8) Charlotte-L09C: earlier than 9.1.0.311(C185E4R1P11T8), earlier than 9.1.0.345(C432E8R1P11T8) Charlotte-L29C: earlier than 9.1.0.325(C185E4R1P11T8), earlier than 9.1.0.335(C636E3R1P13T8), earlier than 9.1.0.345(C432E8R1P11T8), earlier than 9.1.0.336(C605E3R1P12T8) Columbia-AL10B: earlier than 9.1.0.333(C00E333R1P1T8) Columbia-L29D: earlier than 9.1.0.350(C461E3R1P11T8), earlier than 9.1.0.350(C185E3R1P12T8), earlier than 9.1.0.350(C10E5R1P14T8), earlier than 9.1.0.351(C432E5R1P13T8) Cornell-AL00A: earlier than 9.1.0.333(C00E333R1P1T8) Cornell-L29A: earlier than 9.1.0.328(C185E1R1P9T8), earlier than 9.1.0.328(C432E1R1P9T8), earlier than 9.1.0.330(C461E1R1P9T8), earlier than 9.1.0.328(C636E2R1P12T8) Emily-L09C: earlier than 9.1.0.336(C605E4R1P12T8), earlier than 9.1.0.311(C185E2R1P12T8), earlier than 9.1.0.345(C432E10R1P12T8) Emily-L29C: earlier than 9.1.0.311(C605E2R1P12T8), earlier than 9.1.0.311(C636E7R1P13T8), earlier than 9.1.0.311(C432E7R1P11T8) Ever-L29B: earlier than 9.1.0.311(C185E3R3P1), earlier than 9.1.0.310(C636E3R2P1), earlier than 9.1.0.310(C432E3R1P12) HUAWEI Mate 20: earlier than 9.1.0.131(C00E131R3P1) HUAWEI Mate 20 Pro: earlier than 9.1.0.310(C185E10R2P1) HUAWEI Mate 20 RS: earlier than 9.1.0.135(C786E133R3P1) HUAWEI Mate 20 X: earlier than 9.1.0.135(C00E133R2P1) HUAWEI P20: earlier than 9.1.0.333(C00E333R1P1T8) HUAWEI P20 Pro: earlier than 9.1.0.333(C00E333R1P1T8) HUAWEI P30: earlier than 9.1.0.193 HUAWEI P30 Pro: earlier than 9.1.0.186(C00E180R2P1) HUAWEI Y9 2019: earlier than 9.1.0.220(C605E3R1P1T8) HUAWEI nova lite 3: earlier than 9.1.0.305(C635E8R2P2) Honor 10 Lite: earlier than 9.1.0.283(C605E8R2P2) Honor 8X: earlier than 9.1.0.221(C461E2R1P1T8) Honor View 20: earlier than 9.1.0.238(C432E1R3P1) Jackman-L22: earlier than 9.1.0.247(C636E2R4P1T8) Paris-L21B: earlier than 9.1.0.331(C432E1R1P2T8) Paris-L21MEB: earlier than 9.1.0.331(C185E4R1P3T8) Paris-L29B: earlier than 9.1.0.331(C636E1R1P3T8) Sydney-AL00: earlier than 9.1.0.212(C00E62R1P7T8) Sydney-L21: earlier than 9.1.0.215(C432E1R1P1T8), earlier than 9.1.0.213(C185E1R1P1T8) Sydney-L21BR: earlier than 9.1.0.213(C185E1R1P2T8) Sydney-L22: earlier than 9.1.0.258(C636E1R1P1T8) Sydney-L22BR: earlier than 9.1.0.258(C636E1R1P1T8) SydneyM-AL00: earlier than 9.1.0.228(C00E78R1P7T8) SydneyM-L01: earlier than 9.1.0.215(C782E2R1P1T8), earlier than 9.1.0.213(C185E1R1P1T8), earlier than 9.1.0.270(C432E3R1P1T8) SydneyM-L03: earlier than 9.1.0.217(C605E1R1P1T8) SydneyM-L21: earlier than 9.1.0.221(C461E1R1P1T8), earlier than 9.1.0.215(C432E4R1P1T8) SydneyM-L22: earlier than 9.1.0.259(C185E1R1P2T8), earlier than 9.1.0.220(C635E1R1P2T8), earlier than 9.1.0.216(C569E1R1P1T8) SydneyM-L23: earlier than 9.1.0.226(C605E2R1P1T8) Yale-L21A: earlier than 9.1.0.154(C432E2R3P2), earlier than 9.1.0.154(C461E2R2P1), earlier than 9.1.0.154(C636E2R2P1) Honor 20: earlier than 9.1.0.152(C00E150R5P1) Honor Magic2: earlier than 10.0.0.187 Honor V20: earlier than 9.1.0.234(C00E234R4P3)"
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Denial of Service"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190814-01-mobile-en",
              "refsource": "CONFIRM",
              "url": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190814-01-mobile-en"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "25ac1063-e409-4190-8079-24548c77ea2e",
    "assignerShortName": "huawei",
    "cveId": "CVE-2019-5302",
    "datePublished": "2020-04-27T19:50:50",
    "dateReserved": "2019-01-04T00:00:00",
    "dateUpdated": "2024-08-04T19:54:52.990Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2019-2215 (GCVE-0-2019-2215)

Vulnerability from cvelistv5 – Published: 2019-10-11 18:16 – Updated: 2025-10-21 23:45
VLAI?
Summary
A use-after-free in binder.c allows an elevation of privilege from an application to the Linux Kernel. No user interaction is required to exploit this vulnerability, however exploitation does require either the installation of a malicious local application or a separate vulnerability in a network facing application.Product: AndroidAndroid ID: A-141720095
Severity ?
7.8 (High)
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CWE
  • Elevation of privilege
Assigner
References
Impacted products
Vendor Product Version
n/a Android Affected: Kernel
Show details on NVD website
To clipboard 

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T18:42:50.933Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://source.android.com/security/bulletin/2019-10-01"
          },
          {
            "name": "20191018 CVE 2019-2215 Android Binder Use After Free",
            "tags": [
              "mailing-list",
              "x_refsource_FULLDISC",
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2019/Oct/38"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://packetstormsecurity.com/files/154911/Android-Binder-Use-After-Free.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191030-01-binder-en"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20191031-0005/"
          },
          {
            "name": "20191108 [slackware-security] Slackware 14.2 kernel (SSA:2019-311-01)",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "https://seclists.org/bugtraq/2019/Nov/11"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://packetstormsecurity.com/files/155212/Slackware-Security-Advisory-Slackware-14.2-kernel-Updates.html"
          },
          {
            "name": "USN-4186-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/4186-1/"
          },
          {
            "name": "[debian-lts-announce] 20200118 [SECURITY] [DLA 2068-1] linux security update",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2020/01/msg00013.html"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://packetstormsecurity.com/files/156495/Android-Binder-Use-After-Free.html"
          },
          {
            "name": "[debian-lts-announce] 20200302 [SECURITY] [DLA 2114-1] linux-4.9 security update",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2020/03/msg00001.html"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "LOCAL",
              "availabilityImpact": "HIGH",
              "baseScore": 7.8,
              "baseSeverity": "HIGH",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "HIGH",
              "privilegesRequired": "LOW",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2019-2215",
                "options": [
                  {
                    "Exploitation": "active"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-02-07T13:04:20.328785Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          },
          {
            "other": {
              "content": {
                "dateAdded": "2021-11-03",
                "reference": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-2215"
              },
              "type": "kev"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-416",
                "description": "CWE-416 Use After Free",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-10-21T23:45:29.242Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "references": [
          {
            "tags": [
              "government-resource"
            ],
            "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-2215"
          }
        ],
        "timeline": [
          {
            "lang": "en",
            "time": "2021-11-03T00:00:00+00:00",
            "value": "CVE-2019-2215 added to CISA KEV"
          }
        ],
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Android",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "Kernel"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A use-after-free in binder.c allows an elevation of privilege from an application to the Linux Kernel. No user interaction is required to exploit this vulnerability, however exploitation does require either the installation of a malicious local application or a separate vulnerability in a network facing application.Product: AndroidAndroid ID: A-141720095"
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Elevation of privilege",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2020-03-02T19:06:43.000Z",
        "orgId": "baff130e-b8d5-4e15-b3d3-c3cf5d5545c6",
        "shortName": "google_android"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://source.android.com/security/bulletin/2019-10-01"
        },
        {
          "name": "20191018 CVE 2019-2215 Android Binder Use After Free",
          "tags": [
            "mailing-list",
            "x_refsource_FULLDISC"
          ],
          "url": "http://seclists.org/fulldisclosure/2019/Oct/38"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://packetstormsecurity.com/files/154911/Android-Binder-Use-After-Free.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191030-01-binder-en"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://security.netapp.com/advisory/ntap-20191031-0005/"
        },
        {
          "name": "20191108 [slackware-security] Slackware 14.2 kernel (SSA:2019-311-01)",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "https://seclists.org/bugtraq/2019/Nov/11"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://packetstormsecurity.com/files/155212/Slackware-Security-Advisory-Slackware-14.2-kernel-Updates.html"
        },
        {
          "name": "USN-4186-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/4186-1/"
        },
        {
          "name": "[debian-lts-announce] 20200118 [SECURITY] [DLA 2068-1] linux security update",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2020/01/msg00013.html"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://packetstormsecurity.com/files/156495/Android-Binder-Use-After-Free.html"
        },
        {
          "name": "[debian-lts-announce] 20200302 [SECURITY] [DLA 2114-1] linux-4.9 security update",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2020/03/msg00001.html"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "security@android.com",
          "ID": "CVE-2019-2215",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Android",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Kernel"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "A use-after-free in binder.c allows an elevation of privilege from an application to the Linux Kernel. No user interaction is required to exploit this vulnerability, however exploitation does require either the installation of a malicious local application or a separate vulnerability in a network facing application.Product: AndroidAndroid ID: A-141720095"
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Elevation of privilege"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://source.android.com/security/bulletin/2019-10-01",
              "refsource": "CONFIRM",
              "url": "https://source.android.com/security/bulletin/2019-10-01"
            },
            {
              "name": "20191018 CVE 2019-2215 Android Binder Use After Free",
              "refsource": "FULLDISC",
              "url": "http://seclists.org/fulldisclosure/2019/Oct/38"
            },
            {
              "name": "http://packetstormsecurity.com/files/154911/Android-Binder-Use-After-Free.html",
              "refsource": "MISC",
              "url": "http://packetstormsecurity.com/files/154911/Android-Binder-Use-After-Free.html"
            },
            {
              "name": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191030-01-binder-en",
              "refsource": "CONFIRM",
              "url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191030-01-binder-en"
            },
            {
              "name": "https://security.netapp.com/advisory/ntap-20191031-0005/",
              "refsource": "CONFIRM",
              "url": "https://security.netapp.com/advisory/ntap-20191031-0005/"
            },
            {
              "name": "20191108 [slackware-security] Slackware 14.2 kernel (SSA:2019-311-01)",
              "refsource": "BUGTRAQ",
              "url": "https://seclists.org/bugtraq/2019/Nov/11"
            },
            {
              "name": "http://packetstormsecurity.com/files/155212/Slackware-Security-Advisory-Slackware-14.2-kernel-Updates.html",
              "refsource": "MISC",
              "url": "http://packetstormsecurity.com/files/155212/Slackware-Security-Advisory-Slackware-14.2-kernel-Updates.html"
            },
            {
              "name": "USN-4186-1",
              "refsource": "UBUNTU",
              "url": "https://usn.ubuntu.com/4186-1/"
            },
            {
              "name": "[debian-lts-announce] 20200118 [SECURITY] [DLA 2068-1] linux security update",
              "refsource": "MLIST",
              "url": "https://lists.debian.org/debian-lts-announce/2020/01/msg00013.html"
            },
            {
              "name": "http://packetstormsecurity.com/files/156495/Android-Binder-Use-After-Free.html",
              "refsource": "MISC",
              "url": "http://packetstormsecurity.com/files/156495/Android-Binder-Use-After-Free.html"
            },
            {
              "name": "[debian-lts-announce] 20200302 [SECURITY] [DLA 2114-1] linux-4.9 security update",
              "refsource": "MLIST",
              "url": "https://lists.debian.org/debian-lts-announce/2020/03/msg00001.html"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "baff130e-b8d5-4e15-b3d3-c3cf5d5545c6",
    "assignerShortName": "google_android",
    "cveId": "CVE-2019-2215",
    "datePublished": "2019-10-11T18:16:48.000Z",
    "dateReserved": "2018-12-10T00:00:00.000Z",
    "dateUpdated": "2025-10-21T23:45:29.242Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2019-9506 (GCVE-0-2019-9506)

Vulnerability from cvelistv5 – Published: 2019-08-14 16:27 – Updated: 2024-09-16 19:14
VLAI?
Title
Blutooth BR/EDR specification does not specify sufficient encryption key length and allows an attacker to influence key length negotiation
Summary
The Bluetooth BR/EDR specification up to and including version 5.1 permits sufficiently low encryption key length and does not prevent an attacker from influencing the key length negotiation. This allows practical brute-force attacks (aka "KNOB") that can decrypt traffic and inject arbitrary ciphertext without the victim noticing.
Severity ?
7.6 (High)
CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L
CWE
Assigner
References
https://www.kb.cert.org/vuls/id/918987/ third-party-advisoryx_refsource_CERT-VN
http://www.cs.ox.ac.uk/publications/publication12… x_refsource_MISC
https://www.usenix.org/conference/usenixsecurity1… x_refsource_MISC
https://www.bluetooth.com/security/statement-key-… x_refsource_CONFIRM
http://seclists.org/fulldisclosure/2019/Aug/14 mailing-listx_refsource_FULLDISC
http://seclists.org/fulldisclosure/2019/Aug/11 mailing-listx_refsource_FULLDISC
http://seclists.org/fulldisclosure/2019/Aug/13 mailing-listx_refsource_FULLDISC
http://seclists.org/fulldisclosure/2019/Aug/15 mailing-listx_refsource_FULLDISC
http://www.huawei.com/en/psirt/security-advisorie… x_refsource_CONFIRM
https://usn.ubuntu.com/4115-1/ vendor-advisoryx_refsource_UBUNTU
https://usn.ubuntu.com/4118-1/ vendor-advisoryx_refsource_UBUNTU
https://lists.debian.org/debian-lts-announce/2019… mailing-listx_refsource_MLIST
https://lists.debian.org/debian-lts-announce/2019… mailing-listx_refsource_MLIST
https://lists.debian.org/debian-lts-announce/2019… mailing-listx_refsource_MLIST
https://usn.ubuntu.com/4147-1/ vendor-advisoryx_refsource_UBUNTU
https://access.redhat.com/errata/RHSA-2019:2975 vendor-advisoryx_refsource_REDHAT
http://lists.opensuse.org/opensuse-security-annou… vendor-advisoryx_refsource_SUSE
http://lists.opensuse.org/opensuse-security-annou… vendor-advisoryx_refsource_SUSE
https://access.redhat.com/errata/RHSA-2019:3076 vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2019:3055 vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2019:3089 vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2019:3187 vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2019:3165 vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2019:3217 vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2019:3220 vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2019:3231 vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2019:3218 vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2019:3309 vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2019:3517 vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2020:0204 vendor-advisoryx_refsource_REDHAT
Impacted products
Vendor Product Version
Bluetooth BR/EDR Affected: 5.1 , ≤ 5.1 (custom)
Create a notification for this product.
Credits
Daniele Antonioli‚ Nils Ole Tippenhauer, Kasper Rasmussen
Show details on NVD website
To clipboard 

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T21:54:44.303Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "VU#918987",
            "tags": [
              "third-party-advisory",
              "x_refsource_CERT-VN",
              "x_transferred"
            ],
            "url": "https://www.kb.cert.org/vuls/id/918987/"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://www.cs.ox.ac.uk/publications/publication12404-abstract.html"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://www.usenix.org/conference/usenixsecurity19/presentation/antonioli"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://www.bluetooth.com/security/statement-key-negotiation-of-bluetooth/"
          },
          {
            "name": "20190816 APPLE-SA-2019-8-13-3 Additional information for APPLE-SA-2019-7-22-4 watchOS 5.3",
            "tags": [
              "mailing-list",
              "x_refsource_FULLDISC",
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2019/Aug/14"
          },
          {
            "name": "20190816 APPLE-SA-2019-8-13-1 Additional information for APPLE-SA-2019-7-22-2 macOS Mojave 10.14.6, Security Update 2019-004 High Sierra, Security Update 2019-004 Sierra",
            "tags": [
              "mailing-list",
              "x_refsource_FULLDISC",
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2019/Aug/11"
          },
          {
            "name": "20190816 APPLE-SA-2019-8-13-2 Additional information for APPLE-SA-2019-7-22-1 iOS 12.4",
            "tags": [
              "mailing-list",
              "x_refsource_FULLDISC",
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2019/Aug/13"
          },
          {
            "name": "20190816 APPLE-SA-2019-8-13-4 Additional information for APPLE-SA-2019-7-22-5 tvOS 12.4",
            "tags": [
              "mailing-list",
              "x_refsource_FULLDISC",
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2019/Aug/15"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190828-01-knob-en"
          },
          {
            "name": "USN-4115-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/4115-1/"
          },
          {
            "name": "USN-4118-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/4118-1/"
          },
          {
            "name": "[debian-lts-announce] 20190914 [SECURITY] [DLA 1919-1] linux-4.9 security update",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2019/09/msg00014.html"
          },
          {
            "name": "[debian-lts-announce] 20190915 [SECURITY] [DLA 1919-2] linux-4.9 security update",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2019/09/msg00015.html"
          },
          {
            "name": "[debian-lts-announce] 20190925 [SECURITY] [DLA 1930-1] linux security update",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2019/09/msg00025.html"
          },
          {
            "name": "USN-4147-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/4147-1/"
          },
          {
            "name": "RHSA-2019:2975",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2019:2975"
          },
          {
            "name": "openSUSE-SU-2019:2307",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00037.html"
          },
          {
            "name": "openSUSE-SU-2019:2308",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00036.html"
          },
          {
            "name": "RHSA-2019:3076",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2019:3076"
          },
          {
            "name": "RHSA-2019:3055",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2019:3055"
          },
          {
            "name": "RHSA-2019:3089",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2019:3089"
          },
          {
            "name": "RHSA-2019:3187",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2019:3187"
          },
          {
            "name": "RHSA-2019:3165",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2019:3165"
          },
          {
            "name": "RHSA-2019:3217",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2019:3217"
          },
          {
            "name": "RHSA-2019:3220",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2019:3220"
          },
          {
            "name": "RHSA-2019:3231",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2019:3231"
          },
          {
            "name": "RHSA-2019:3218",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2019:3218"
          },
          {
            "name": "RHSA-2019:3309",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2019:3309"
          },
          {
            "name": "RHSA-2019:3517",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2019:3517"
          },
          {
            "name": "RHSA-2020:0204",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2020:0204"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "platforms": [
            "N/A"
          ],
          "product": "BR/EDR",
          "vendor": "Bluetooth",
          "versions": [
            {
              "lessThanOrEqual": "5.1",
              "status": "affected",
              "version": "5.1",
              "versionType": "custom"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "value": "Daniele Antonioli\u201a Nils Ole Tippenhauer, Kasper Rasmussen"
        }
      ],
      "datePublic": "2019-08-14T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "The Bluetooth BR/EDR specification up to and including version 5.1 permits sufficiently low encryption key length and does not prevent an attacker from influencing the key length negotiation. This allows practical brute-force attacks (aka \"KNOB\") that can decrypt traffic and inject arbitrary ciphertext without the victim noticing."
        }
      ],
      "metrics": [
        {
          "cvssV3_0": {
            "attackComplexity": "LOW",
            "attackVector": "ADJACENT_NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 7.6,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L",
            "version": "3.0"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-310",
              "description": "CWE-310 Cryptographic Issues",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2020-01-30T10:06:23",
        "orgId": "37e5125f-f79b-445b-8fad-9564f167944b",
        "shortName": "certcc"
      },
      "references": [
        {
          "name": "VU#918987",
          "tags": [
            "third-party-advisory",
            "x_refsource_CERT-VN"
          ],
          "url": "https://www.kb.cert.org/vuls/id/918987/"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://www.cs.ox.ac.uk/publications/publication12404-abstract.html"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://www.usenix.org/conference/usenixsecurity19/presentation/antonioli"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://www.bluetooth.com/security/statement-key-negotiation-of-bluetooth/"
        },
        {
          "name": "20190816 APPLE-SA-2019-8-13-3 Additional information for APPLE-SA-2019-7-22-4 watchOS 5.3",
          "tags": [
            "mailing-list",
            "x_refsource_FULLDISC"
          ],
          "url": "http://seclists.org/fulldisclosure/2019/Aug/14"
        },
        {
          "name": "20190816 APPLE-SA-2019-8-13-1 Additional information for APPLE-SA-2019-7-22-2 macOS Mojave 10.14.6, Security Update 2019-004 High Sierra, Security Update 2019-004 Sierra",
          "tags": [
            "mailing-list",
            "x_refsource_FULLDISC"
          ],
          "url": "http://seclists.org/fulldisclosure/2019/Aug/11"
        },
        {
          "name": "20190816 APPLE-SA-2019-8-13-2 Additional information for APPLE-SA-2019-7-22-1 iOS 12.4",
          "tags": [
            "mailing-list",
            "x_refsource_FULLDISC"
          ],
          "url": "http://seclists.org/fulldisclosure/2019/Aug/13"
        },
        {
          "name": "20190816 APPLE-SA-2019-8-13-4 Additional information for APPLE-SA-2019-7-22-5 tvOS 12.4",
          "tags": [
            "mailing-list",
            "x_refsource_FULLDISC"
          ],
          "url": "http://seclists.org/fulldisclosure/2019/Aug/15"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190828-01-knob-en"
        },
        {
          "name": "USN-4115-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/4115-1/"
        },
        {
          "name": "USN-4118-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/4118-1/"
        },
        {
          "name": "[debian-lts-announce] 20190914 [SECURITY] [DLA 1919-1] linux-4.9 security update",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2019/09/msg00014.html"
        },
        {
          "name": "[debian-lts-announce] 20190915 [SECURITY] [DLA 1919-2] linux-4.9 security update",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2019/09/msg00015.html"
        },
        {
          "name": "[debian-lts-announce] 20190925 [SECURITY] [DLA 1930-1] linux security update",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2019/09/msg00025.html"
        },
        {
          "name": "USN-4147-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/4147-1/"
        },
        {
          "name": "RHSA-2019:2975",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2019:2975"
        },
        {
          "name": "openSUSE-SU-2019:2307",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00037.html"
        },
        {
          "name": "openSUSE-SU-2019:2308",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00036.html"
        },
        {
          "name": "RHSA-2019:3076",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2019:3076"
        },
        {
          "name": "RHSA-2019:3055",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2019:3055"
        },
        {
          "name": "RHSA-2019:3089",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2019:3089"
        },
        {
          "name": "RHSA-2019:3187",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2019:3187"
        },
        {
          "name": "RHSA-2019:3165",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2019:3165"
        },
        {
          "name": "RHSA-2019:3217",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2019:3217"
        },
        {
          "name": "RHSA-2019:3220",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2019:3220"
        },
        {
          "name": "RHSA-2019:3231",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2019:3231"
        },
        {
          "name": "RHSA-2019:3218",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2019:3218"
        },
        {
          "name": "RHSA-2019:3309",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2019:3309"
        },
        {
          "name": "RHSA-2019:3517",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2019:3517"
        },
        {
          "name": "RHSA-2020:0204",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2020:0204"
        }
      ],
      "source": {
        "advisory": "VU#918987",
        "defect": [
          "VU#918987"
        ],
        "discovery": "EXTERNAL"
      },
      "title": "Blutooth BR/EDR specification does not specify sufficient encryption key length and allows an attacker to influence key length negotiation",
      "workarounds": [
        {
          "lang": "en",
          "value": "Bluetooth SIG Expedited Errata Correction 11838"
        }
      ],
      "x_generator": {
        "engine": "Vulnogram 0.0.7"
      },
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "AKA": "KNOB",
          "ASSIGNER": "cert@cert.org",
          "DATE_PUBLIC": "2019-08-14",
          "ID": "CVE-2019-9506",
          "STATE": "PUBLIC",
          "TITLE": "Blutooth BR/EDR specification does not specify sufficient encryption key length and allows an attacker to influence key length negotiation"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "BR/EDR",
                      "version": {
                        "version_data": [
                          {
                            "platform": "N/A",
                            "version_affected": "\u003c=",
                            "version_name": "5.1",
                            "version_value": "5.1"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Bluetooth"
              }
            ]
          }
        },
        "credit": [
          {
            "lang": "eng",
            "value": "Daniele Antonioli\u201a Nils Ole Tippenhauer, Kasper Rasmussen"
          }
        ],
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "The Bluetooth BR/EDR specification up to and including version 5.1 permits sufficiently low encryption key length and does not prevent an attacker from influencing the key length negotiation. This allows practical brute-force attacks (aka \"KNOB\") that can decrypt traffic and inject arbitrary ciphertext without the victim noticing."
            }
          ]
        },
        "generator": {
          "engine": "Vulnogram 0.0.7"
        },
        "impact": {
          "cvss": {
            "attackComplexity": "LOW",
            "attackVector": "ADJACENT_NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 7.6,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L",
            "version": "3.0"
          }
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-310 Cryptographic Issues"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "VU#918987",
              "refsource": "CERT-VN",
              "url": "https://www.kb.cert.org/vuls/id/918987/"
            },
            {
              "name": "http://www.cs.ox.ac.uk/publications/publication12404-abstract.html",
              "refsource": "MISC",
              "url": "http://www.cs.ox.ac.uk/publications/publication12404-abstract.html"
            },
            {
              "name": "https://www.usenix.org/conference/usenixsecurity19/presentation/antonioli",
              "refsource": "MISC",
              "url": "https://www.usenix.org/conference/usenixsecurity19/presentation/antonioli"
            },
            {
              "name": "https://www.bluetooth.com/security/statement-key-negotiation-of-bluetooth/",
              "refsource": "CONFIRM",
              "url": "https://www.bluetooth.com/security/statement-key-negotiation-of-bluetooth/"
            },
            {
              "name": "20190816 APPLE-SA-2019-8-13-3 Additional information for APPLE-SA-2019-7-22-4 watchOS 5.3",
              "refsource": "FULLDISC",
              "url": "http://seclists.org/fulldisclosure/2019/Aug/14"
            },
            {
              "name": "20190816 APPLE-SA-2019-8-13-1 Additional information for APPLE-SA-2019-7-22-2 macOS Mojave 10.14.6, Security Update 2019-004 High Sierra, Security Update 2019-004 Sierra",
              "refsource": "FULLDISC",
              "url": "http://seclists.org/fulldisclosure/2019/Aug/11"
            },
            {
              "name": "20190816 APPLE-SA-2019-8-13-2 Additional information for APPLE-SA-2019-7-22-1 iOS 12.4",
              "refsource": "FULLDISC",
              "url": "http://seclists.org/fulldisclosure/2019/Aug/13"
            },
            {
              "name": "20190816 APPLE-SA-2019-8-13-4 Additional information for APPLE-SA-2019-7-22-5 tvOS 12.4",
              "refsource": "FULLDISC",
              "url": "http://seclists.org/fulldisclosure/2019/Aug/15"
            },
            {
              "name": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190828-01-knob-en",
              "refsource": "CONFIRM",
              "url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190828-01-knob-en"
            },
            {
              "name": "USN-4115-1",
              "refsource": "UBUNTU",
              "url": "https://usn.ubuntu.com/4115-1/"
            },
            {
              "name": "USN-4118-1",
              "refsource": "UBUNTU",
              "url": "https://usn.ubuntu.com/4118-1/"
            },
            {
              "name": "[debian-lts-announce] 20190914 [SECURITY] [DLA 1919-1] linux-4.9 security update",
              "refsource": "MLIST",
              "url": "https://lists.debian.org/debian-lts-announce/2019/09/msg00014.html"
            },
            {
              "name": "[debian-lts-announce] 20190915 [SECURITY] [DLA 1919-2] linux-4.9 security update",
              "refsource": "MLIST",
              "url": "https://lists.debian.org/debian-lts-announce/2019/09/msg00015.html"
            },
            {
              "name": "[debian-lts-announce] 20190925 [SECURITY] [DLA 1930-1] linux security update",
              "refsource": "MLIST",
              "url": "https://lists.debian.org/debian-lts-announce/2019/09/msg00025.html"
            },
            {
              "name": "USN-4147-1",
              "refsource": "UBUNTU",
              "url": "https://usn.ubuntu.com/4147-1/"
            },
            {
              "name": "RHSA-2019:2975",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2019:2975"
            },
            {
              "name": "openSUSE-SU-2019:2307",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00037.html"
            },
            {
              "name": "openSUSE-SU-2019:2308",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00036.html"
            },
            {
              "name": "RHSA-2019:3076",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2019:3076"
            },
            {
              "name": "RHSA-2019:3055",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2019:3055"
            },
            {
              "name": "RHSA-2019:3089",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2019:3089"
            },
            {
              "name": "RHSA-2019:3187",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2019:3187"
            },
            {
              "name": "RHSA-2019:3165",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2019:3165"
            },
            {
              "name": "RHSA-2019:3217",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2019:3217"
            },
            {
              "name": "RHSA-2019:3220",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2019:3220"
            },
            {
              "name": "RHSA-2019:3231",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2019:3231"
            },
            {
              "name": "RHSA-2019:3218",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2019:3218"
            },
            {
              "name": "RHSA-2019:3309",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2019:3309"
            },
            {
              "name": "RHSA-2019:3517",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2019:3517"
            },
            {
              "name": "RHSA-2020:0204",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2020:0204"
            }
          ]
        },
        "source": {
          "advisory": "VU#918987",
          "defect": [
            "VU#918987"
          ],
          "discovery": "EXTERNAL"
        },
        "work_around": [
          {
            "lang": "en",
            "value": "Bluetooth SIG Expedited Errata Correction 11838"
          }
        ]
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "37e5125f-f79b-445b-8fad-9564f167944b",
    "assignerShortName": "certcc",
    "cveId": "CVE-2019-9506",
    "datePublished": "2019-08-14T16:27:45.059869Z",
    "dateReserved": "2019-03-01T00:00:00",
    "dateUpdated": "2024-09-16T19:14:13.573Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2018-7910 (GCVE-0-2018-7910)

Vulnerability from cvelistv5 – Published: 2018-11-13 19:00 – Updated: 2024-08-05 06:37
VLAI?
Summary
Some Huawei smartphones ALP-AL00B 8.0.0.118D(C00), ALP-TL00B 8.0.0.118D(C01), BLA-AL00B 8.0.0.118D(C00), BLA-L09C 8.0.0.127(C432), 8.0.0.128(C432), 8.0.0.137(C432), BLA-L29C 8.0.0.129(C432), 8.0.0.137(C432) have an authentication bypass vulnerability. When the attacker obtains the user's smartphone, the vulnerability can be used to replace the start-up program so that the attacker can obtain the information in the smartphone and achieve the purpose of controlling the smartphone.
Severity ?
No CVSS data available.
CWE
  • authentication bypass
Assigner
References
Impacted products
Vendor Product Version
Huawei Technologies Co., Ltd. ALP-AL00B, ALP-TL00B, BLA-AL00B, BLA-L09C, BLA-L29C Affected: ALP-AL00B 8.0.0.118D(C00), ALP-TL00B 8.0.0.118D(C01), BLA-AL00B 8.0.0.118D(C00), BLA-L09C 8.0.0.127(C432), 8.0.0.128(C432), 8.0.0.137(C432), BLA-L29C 8.0.0.129(C432), 8.0.0.137(C432)
Create a notification for this product.
Show details on NVD website
To clipboard 

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T06:37:59.598Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20181101-01-bypass-en"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "ALP-AL00B, ALP-TL00B, BLA-AL00B, BLA-L09C, BLA-L29C",
          "vendor": "Huawei Technologies Co., Ltd.",
          "versions": [
            {
              "status": "affected",
              "version": "ALP-AL00B 8.0.0.118D(C00), ALP-TL00B 8.0.0.118D(C01), BLA-AL00B 8.0.0.118D(C00), BLA-L09C 8.0.0.127(C432), 8.0.0.128(C432), 8.0.0.137(C432), BLA-L29C 8.0.0.129(C432), 8.0.0.137(C432)"
            }
          ]
        }
      ],
      "datePublic": "2018-11-01T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Some Huawei smartphones ALP-AL00B 8.0.0.118D(C00), ALP-TL00B 8.0.0.118D(C01), BLA-AL00B 8.0.0.118D(C00), BLA-L09C 8.0.0.127(C432), 8.0.0.128(C432), 8.0.0.137(C432), BLA-L29C 8.0.0.129(C432), 8.0.0.137(C432) have an authentication bypass vulnerability. When the attacker obtains the user\u0027s smartphone, the vulnerability can be used to replace the start-up program so that the attacker can obtain the information in the smartphone and achieve the purpose of controlling the smartphone."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "authentication bypass",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-11-13T18:57:01",
        "orgId": "25ac1063-e409-4190-8079-24548c77ea2e",
        "shortName": "huawei"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20181101-01-bypass-en"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@huawei.com",
          "ID": "CVE-2018-7910",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "ALP-AL00B, ALP-TL00B, BLA-AL00B, BLA-L09C, BLA-L29C",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "ALP-AL00B 8.0.0.118D(C00), ALP-TL00B 8.0.0.118D(C01), BLA-AL00B 8.0.0.118D(C00), BLA-L09C 8.0.0.127(C432), 8.0.0.128(C432), 8.0.0.137(C432), BLA-L29C 8.0.0.129(C432), 8.0.0.137(C432)"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Huawei Technologies Co., Ltd."
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Some Huawei smartphones ALP-AL00B 8.0.0.118D(C00), ALP-TL00B 8.0.0.118D(C01), BLA-AL00B 8.0.0.118D(C00), BLA-L09C 8.0.0.127(C432), 8.0.0.128(C432), 8.0.0.137(C432), BLA-L29C 8.0.0.129(C432), 8.0.0.137(C432) have an authentication bypass vulnerability. When the attacker obtains the user\u0027s smartphone, the vulnerability can be used to replace the start-up program so that the attacker can obtain the information in the smartphone and achieve the purpose of controlling the smartphone."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "authentication bypass"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20181101-01-bypass-en",
              "refsource": "CONFIRM",
              "url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20181101-01-bypass-en"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "25ac1063-e409-4190-8079-24548c77ea2e",
    "assignerShortName": "huawei",
    "cveId": "CVE-2018-7910",
    "datePublished": "2018-11-13T19:00:00",
    "dateReserved": "2018-03-09T00:00:00",
    "dateUpdated": "2024-08-05T06:37:59.598Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}