CVE-2019-5235: Null Pointer Dereference
First published: Fri Dec 13 2019(Updated: )
Some Huawei smart phones have a null pointer dereference vulnerability. An attacker crafts specific packets and sends to the affected product to exploit this vulnerability. Successful exploitation may cause the affected phone to be abnormal.
Credit: psirt@huawei.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Huawei ALP-AL00B-RSC Firmware | =8.0.0.153\(c00\) | |
| Huawei ALP-AL00B-RSC Firmware | ||
| Huawei ALP-TL00B | =8.0.0.129\(sp2c01\) | |
| Huawei ALP-TL00B firmware | ||
| Huawei BLA-AL00B Firmware | =8.0.0.129\(sp2c786\) | |
| Huawei BLA-AL00B Firmware | =8.0.0.153\(c00\) | |
| Huawei BLA-AL00B Firmware | ||
| Huawei BLA-TL00B | =8.0.0.129\(sp2c01\) | |
| Huawei BLA-TL00B Firmware | ||
| Huawei Charlotte-AL00A Firmware | =8.1.0.176\(c00\) | |
| Huawei Charlotte-AL00A Firmware | ||
| Huawei Charlotte | =8.1.0.176\(c01\) | |
| Huawei Charlotte TL00B | ||
| Huawei Columbia-AL10B | =8.1.0.163\(c00\) | |
| Huawei Columbia-AL10B Firmware | ||
| Huawei Columbia-AL10i | =8.1.0.150\(c675custc675d2\) | |
| Huawei Columbia-AL10i Firmware | ||
| Huawei LON-L29D | =8.1.0.146\(c461\) | |
| Huawei LON-L29D | =8.1.0.148\(c185\) | |
| Huawei LON-L29D | =8.1.0.151\(c10\) | |
| Huawei LON-L29D | =8.1.0.151\(c432\) | |
| Huawei Columbia-L29D Firmware | ||
| Huawei Columbia-TL00D | =8.1.0.186\(c01gt\) | |
| Huawei Columbia-TL00D Firmware | ||
| Huawei elle-al00b | =9.1.0.162\(c00e160r2p1\) | |
| Huawei elle-al00b firmware | ||
| Huawei elle-tl00b | =9.1.0.162\(c01e160r2p1\) | |
| Huawei elle-tl00b firmware | ||
| Huawei Emily-AL00A | =8.1.0.190\(c00\) | |
| Huawei Emily-AL00A firmware | ||
| Huawei emily-tl00b | =8.1.0.175\(c01\) | |
| Huawei emily-tl00b firmware | ||
| Huawei ever-al00b firmware | =9.0.0.195\(c00e195r2p1\) | |
| Huawei Ever AL00B | ||
| Huawei EVER-L29B | =9.0.0.206\(c185e3r3p1\) | |
| Huawei EVER-L29B | =9.0.0.207\(c636e3r2p1\) | |
| Huawei EVER-L29B | =9.0.0.208\(c432e3r1p12\) | |
| Huawei P10 | ||
| Huawei Harry-AL00C | =9.1.0.206\(c00e205r3p1\) | |
| Huawei Harry-AL00C Firmware | ||
| Huawei Harry-al10b | ||
| Huawei Harry-al10b | =9.1.0.206\(c00e205r3p1\) | |
| Huawei Honor View 10 | ||
| Huawei Harry-TL00C | =9.0.1.162\(c01e160r2p3\) | |
| Huawei Harry-TL00C Firmware | ||
| Huawei Hima-AL00B | =9.0.0.200\(c00e200r2p1\) | |
| Huawei Hima-AL00B Firmware | ||
| Huawei Jackman L21 | =8.2.0.160\(c185\) | |
| Huawei Jackman-L21 Firmware | ||
| Huawei Jackman-L22 | =8.2.0.156\(c636r2p2\) | |
| Huawei Jackman-L22 firmware | ||
| Huawei Jackman-L23 | =8.2.0.152\(c45custc45d1\) | |
| Huawei Jackman-L23 | =8.2.0.162\(c605\) | |
| Huawei Jackman-L23 | ||
| Huawei Johnson-AL00IC | =8.2.0.161\(c675custc675d1\) | |
| Huawei Johnson-AL00IC | ||
| Huawei Johnson-AL10C Firmware | =8.2.0.165\(c00r1p16\) | |
| Huawei johnson-al10c firmware | ||
| Huawei Johnson-L21C | =8.2.0.130\(c461r1p1\) | |
| Huawei Johnson-L21C | =8.2.0.131\(c10r2p2\) | |
| Huawei Johnson-L21C | =8.2.0.136\(c432custc432d1\) | |
| Huawei Johnson-L21C Firmware | ||
| Huawei Johnson-L21D Firmware | =8.2.0.101\(c10custc10d1\) | |
| Huawei Johnson-L21D Firmware | =8.2.0.101\(c432custc432d1\) | |
| Huawei Johnson-L21D Firmware | =8.2.0.131\(c55custc55d1\) | |
| Huawei Johnson-L21D Firmware | ||
| Huawei Johnson L22C Firmware | =8.2.0.105\(c185r1p1\) | |
| Huawei Johnson L22C Firmware | =8.2.0.107\(c636r2p1\) | |
| Huawei Johnson L22C Firmware | ||
| Huawei Johnson-L22D | =8.2.0.105\(c185r2p1\) | |
| Huawei Johnson-L22D | =8.2.0.107\(c636r2p1\) | |
| Huawei Johnson-L22D Firmware | ||
| Huawei Johnson-L23C | =8.2.0.130\(c636custc636d2\) | |
| Huawei Johnson-L23C | =8.2.0.133\(c605custc605d1\) | |
| Huawei johnson-l23c firmware | ||
| Huawei Johnson L42IC Firmware | =8.2.0.155\(c675r2p1\) | |
| Huawei Johnson L42IC | ||
| Huawei Johnson L42IE Firmware | =8.2.0.155\(c675r2p1\) | |
| Huawei Johnson L42IE | ||
| Huawei Johnson L42IF Firmware | =8.2.0.155\(c675r2p1\) | |
| Huawei Johnson L42IF | ||
| Huawei Johnson-TL00D | =8.2.0.100\(c541custc541d1\) | |
| Huawei Johnson-TL00D | =8.2.0.165\(c01r1p16\) | |
| Huawei Johnson-TL00D Firmware | ||
| Huawei Johnson-TL00F | =8.2.0.100\(c541custc541d1\) | |
| Huawei Johnson | ||
| Huawei Laya-AL00EP | =9.0.0.201\(c786e200r2p1\) | |
| Huawei Laya | ||
| Huawei Neo-AL00 Firmware | =8.1.0.175\(c786\) | |
| Huawei Neo-AL00D Firmware | ||
| Huawei Potter-AL00C | =9.1.0.208\(c00e205r3p1\) | |
| Huawei Potter-AL00C Firmware | ||
| Huawei Potter-AL10A Firmware | =9.1.0.208\(c00e205r3p1\) | |
| Huawei Potter-AL10A Firmware | ||
| Huawei Princeton-AL10B | =9.1.0.211\(c00e203r2p2\) | |
| Huawei Princeton-AL10B Firmware | ||
| Huawei Princeton-AL10D | =9.1.0.212\(c00e204r2p2\) | |
| Huawei Princeton | ||
| Huawei P10 Firmware | =9.0.1.150\(c675e9r1p4\) | |
| Huawei Princeton | ||
| Huawei Princeton-TL10C | =9.1.0.211\(c01e203r2p2\) | |
| Huawei Princeton-TL10C Firmware | ||
| Huawei Firmware | =9.1.0.206\(c00e200r2p3\) | |
| Huawei Tonys | ||
| Huawei Tony-AL00B Firmware | =9.1.0.206\(c01e200r2p3\) | |
| Huawei Tony-TL00B Firmware | ||
| Huawei Vogue AL00A | =9.1.0.162\(c00e160r2p1\) | |
| Huawei Vogue AL00A Preload Firmware | ||
| Huawei Vogue AL00A Preload Firmware | =9.1.0.12\(c00r1\) | |
| Huawei Vogue AL00A Preload Firmware | ||
| Huawei Vogue AL10C | =9.1.0.162\(c00e160r2p1\) | |
| Huawei vogue-al10c firmware | ||
| Huawei vogue-al10c firmware | =9.1.0.12\(c00r1\) | |
| Huawei vogue-al10c firmware | ||
| Huawei Vogue-TL00B Firmware | =9.1.0.162\(c01e160r2p1\) | |
| Huawei Vogue-TL00B Firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2019-5235?
CVE-2019-5235 is a high-severity vulnerability that can lead to abnormal behavior in affected Huawei smartphones.
What devices are affected by CVE-2019-5235?
CVE-2019-5235 affects specific Huawei smartphones running firmware versions such as 8.0.0.153 and 8.0.0.129.
How do I fix CVE-2019-5235?
To fix CVE-2019-5235, update your Huawei smartphone to the latest firmware version provided by Huawei.
What is a null pointer dereference vulnerability in CVE-2019-5235?
A null pointer dereference vulnerability like CVE-2019-5235 occurs when an application attempts to access an object or resource that has not been initialized, which may cause crashes or unintended behavior.
What are the potential impacts of exploiting CVE-2019-5235?
Exploiting CVE-2019-5235 may result in the affected smartphone becoming unresponsive or experiencing abnormal functionality.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/author
- agent/last-modified-date
- agent/weakness
- agent/severity
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/huawei
- canonical/huawei alp-al00b-rsc firmware
- version/huawei alp-al00b-rsc firmware/8.0.0.153\(c00\)
- canonical/huawei alp-tl00b
- version/huawei alp-tl00b/8.0.0.129\(sp2c01\)
- canonical/huawei alp-tl00b firmware
- canonical/huawei bla-al00b firmware
- version/huawei bla-al00b firmware/8.0.0.129\(sp2c786\)
- version/huawei bla-al00b firmware/8.0.0.153\(c00\)
- canonical/huawei bla-tl00b
- version/huawei bla-tl00b/8.0.0.129\(sp2c01\)
- canonical/huawei bla-tl00b firmware
- canonical/huawei charlotte-al00a firmware
- version/huawei charlotte-al00a firmware/8.1.0.176\(c00\)
- canonical/huawei charlotte
- version/huawei charlotte/8.1.0.176\(c01\)
- canonical/huawei charlotte tl00b
- canonical/huawei columbia-al10b
- version/huawei columbia-al10b/8.1.0.163\(c00\)
- canonical/huawei columbia-al10b firmware
- canonical/huawei columbia-al10i
- version/huawei columbia-al10i/8.1.0.150\(c675custc675d2\)
- canonical/huawei columbia-al10i firmware
- canonical/huawei lon-l29d
- version/huawei lon-l29d/8.1.0.146\(c461\)
- version/huawei lon-l29d/8.1.0.148\(c185\)
- version/huawei lon-l29d/8.1.0.151\(c10\)
- version/huawei lon-l29d/8.1.0.151\(c432\)
- canonical/huawei columbia-l29d firmware
- canonical/huawei columbia-tl00d
- version/huawei columbia-tl00d/8.1.0.186\(c01gt\)
- canonical/huawei columbia-tl00d firmware
- canonical/huawei elle-al00b
- version/huawei elle-al00b/9.1.0.162\(c00e160r2p1\)
- canonical/huawei elle-al00b firmware
- canonical/huawei elle-tl00b
- version/huawei elle-tl00b/9.1.0.162\(c01e160r2p1\)
- canonical/huawei elle-tl00b firmware
- canonical/huawei emily-al00a
- version/huawei emily-al00a/8.1.0.190\(c00\)
- canonical/huawei emily-al00a firmware
- canonical/huawei emily-tl00b
- version/huawei emily-tl00b/8.1.0.175\(c01\)
- canonical/huawei emily-tl00b firmware
- canonical/huawei ever-al00b firmware
- version/huawei ever-al00b firmware/9.0.0.195\(c00e195r2p1\)
- canonical/huawei ever al00b
- canonical/huawei ever-l29b
- version/huawei ever-l29b/9.0.0.206\(c185e3r3p1\)
- version/huawei ever-l29b/9.0.0.207\(c636e3r2p1\)
- version/huawei ever-l29b/9.0.0.208\(c432e3r1p12\)
- canonical/huawei p10
- canonical/huawei harry-al00c
- version/huawei harry-al00c/9.1.0.206\(c00e205r3p1\)
- canonical/huawei harry-al00c firmware
- canonical/huawei harry-al10b
- version/huawei harry-al10b/9.1.0.206\(c00e205r3p1\)
- canonical/huawei honor view 10
- canonical/huawei harry-tl00c
- version/huawei harry-tl00c/9.0.1.162\(c01e160r2p3\)
- canonical/huawei harry-tl00c firmware
- canonical/huawei hima-al00b
- version/huawei hima-al00b/9.0.0.200\(c00e200r2p1\)
- canonical/huawei hima-al00b firmware
- canonical/huawei jackman l21
- version/huawei jackman l21/8.2.0.160\(c185\)
- canonical/huawei jackman-l21 firmware
- canonical/huawei jackman-l22
- version/huawei jackman-l22/8.2.0.156\(c636r2p2\)
- canonical/huawei jackman-l22 firmware
- canonical/huawei jackman-l23
- version/huawei jackman-l23/8.2.0.152\(c45custc45d1\)
- version/huawei jackman-l23/8.2.0.162\(c605\)
- canonical/huawei johnson-al00ic
- version/huawei johnson-al00ic/8.2.0.161\(c675custc675d1\)
- canonical/huawei johnson-al10c firmware
- version/huawei johnson-al10c firmware/8.2.0.165\(c00r1p16\)
- canonical/huawei johnson-l21c
- version/huawei johnson-l21c/8.2.0.130\(c461r1p1\)
- version/huawei johnson-l21c/8.2.0.131\(c10r2p2\)
- version/huawei johnson-l21c/8.2.0.136\(c432custc432d1\)
- canonical/huawei johnson-l21c firmware
- canonical/huawei johnson-l21d firmware
- version/huawei johnson-l21d firmware/8.2.0.101\(c10custc10d1\)
- version/huawei johnson-l21d firmware/8.2.0.101\(c432custc432d1\)
- version/huawei johnson-l21d firmware/8.2.0.131\(c55custc55d1\)
- canonical/huawei johnson l22c firmware
- version/huawei johnson l22c firmware/8.2.0.105\(c185r1p1\)
- version/huawei johnson l22c firmware/8.2.0.107\(c636r2p1\)
- canonical/huawei johnson-l22d
- version/huawei johnson-l22d/8.2.0.105\(c185r2p1\)
- version/huawei johnson-l22d/8.2.0.107\(c636r2p1\)
- canonical/huawei johnson-l22d firmware
- canonical/huawei johnson-l23c
- version/huawei johnson-l23c/8.2.0.130\(c636custc636d2\)
- version/huawei johnson-l23c/8.2.0.133\(c605custc605d1\)
- canonical/huawei johnson-l23c firmware
- canonical/huawei johnson l42ic firmware
- version/huawei johnson l42ic firmware/8.2.0.155\(c675r2p1\)
- canonical/huawei johnson l42ic
- canonical/huawei johnson l42ie firmware
- version/huawei johnson l42ie firmware/8.2.0.155\(c675r2p1\)
- canonical/huawei johnson l42ie
- canonical/huawei johnson l42if firmware
- version/huawei johnson l42if firmware/8.2.0.155\(c675r2p1\)
- canonical/huawei johnson l42if
- canonical/huawei johnson-tl00d
- version/huawei johnson-tl00d/8.2.0.100\(c541custc541d1\)
- version/huawei johnson-tl00d/8.2.0.165\(c01r1p16\)
- canonical/huawei johnson-tl00d firmware
- canonical/huawei johnson-tl00f
- version/huawei johnson-tl00f/8.2.0.100\(c541custc541d1\)
- canonical/huawei johnson
- canonical/huawei laya-al00ep
- version/huawei laya-al00ep/9.0.0.201\(c786e200r2p1\)
- canonical/huawei laya
- canonical/huawei neo-al00 firmware
- version/huawei neo-al00 firmware/8.1.0.175\(c786\)
- canonical/huawei neo-al00d firmware
- canonical/huawei potter-al00c
- version/huawei potter-al00c/9.1.0.208\(c00e205r3p1\)
- canonical/huawei potter-al00c firmware
- canonical/huawei potter-al10a firmware
- version/huawei potter-al10a firmware/9.1.0.208\(c00e205r3p1\)
- canonical/huawei princeton-al10b
- version/huawei princeton-al10b/9.1.0.211\(c00e203r2p2\)
- canonical/huawei princeton-al10b firmware
- canonical/huawei princeton-al10d
- version/huawei princeton-al10d/9.1.0.212\(c00e204r2p2\)
- canonical/huawei princeton
- canonical/huawei p10 firmware
- version/huawei p10 firmware/9.0.1.150\(c675e9r1p4\)
- canonical/huawei princeton-tl10c
- version/huawei princeton-tl10c/9.1.0.211\(c01e203r2p2\)
- canonical/huawei princeton-tl10c firmware
- canonical/huawei firmware
- version/huawei firmware/9.1.0.206\(c00e200r2p3\)
- canonical/huawei tonys
- canonical/huawei tony-al00b firmware
- version/huawei tony-al00b firmware/9.1.0.206\(c01e200r2p3\)
- canonical/huawei tony-tl00b firmware
- canonical/huawei vogue al00a
- version/huawei vogue al00a/9.1.0.162\(c00e160r2p1\)
- canonical/huawei vogue al00a preload firmware
- version/huawei vogue al00a preload firmware/9.1.0.12\(c00r1\)
- canonical/huawei vogue al10c
- version/huawei vogue al10c/9.1.0.162\(c00e160r2p1\)
- canonical/huawei vogue-al10c firmware
- version/huawei vogue-al10c firmware/9.1.0.12\(c00r1\)
- canonical/huawei vogue-tl00b firmware
- version/huawei vogue-tl00b firmware/9.1.0.162\(c01e160r2p1\)