ID CVE-2019-5299
Summary Huawei mobile phones Hima-AL00Bhave with Versions earlier than HMA-AL00C00B175 have a signature verification bypass vulnerability. Attackers can induce users to install malicious applications. Due to a defect in the signature verification logic, the malicious applications can invoke specific interface to execute malicious code. A successful exploit may result in the execution of arbitrary code.
References
Vulnerable Configurations
  • cpe:2.3:h:huawei:hima-al00b
    cpe:2.3:h:huawei:hima-al00b
CVSS
Base: 6.8
Impact:
Exploitability:
CWE CWE-254
CAPEC
Last major update 13-08-2019 - 17:15
Published 13-08-2019 - 17:15
Last modified 20-08-2019 - 11:36
Back to Top