CVE-2019-5266: Input Validation
First published: Mon Dec 23 2019(Updated: )
Huawei Share function in P30 9.1.0.193(C00E190R2P1) smartphone has an insufficient input validation vulnerability. Attackers can exploit this vulnerability by sending crafted packets to the affected device. Successful exploit may cause the function will be disabled.
Credit: psirt@huawei.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Huawei P30 Firmware | =9.1.0.193\(c00e190r2p1\) | |
| HUAWEI P30 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is CVE-2019-5266?
CVE-2019-5266 is a vulnerability in the Huawei Share function in P30 9.1.0.193(C00E190R2P1) smartphone that allows attackers to disable the function by sending crafted packets.
How severe is CVE-2019-5266?
CVE-2019-5266 has a severity rating of 7.5 (high).
How can CVE-2019-5266 be exploited?
CVE-2019-5266 can be exploited by sending crafted packets to the affected device.
Which software versions are affected by CVE-2019-5266?
The Huawei P30 firmware version 9.1.0.193(C00E190R2P1) is affected.
Is the HUAWEI P30 affected by CVE-2019-5266?
No, the HUAWEI P30 is not affected by CVE-2019-5266.
Is there a fix for CVE-2019-5266?
Please refer to the official Huawei security advisory at https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191218-02-share-en for information on patches or mitigations for CVE-2019-5266.
- collector/nvd-index
- agent/severity
- agent/author
- agent/references
- agent/weakness
- agent/description
- agent/type
- agent/event
- agent/tags
- agent/first-publish-date
- agent/last-modified-date
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- vendor/huawei
- canonical/huawei p30 firmware
- version/huawei p30 firmware/9.1.0.193\(c00e190r2p1\)
- canonical/huawei p30