What is CVE-2019-5283?

CVE-2019-5283 is a Factory Reset Protection (FRP) bypass security vulnerability in Huawei P20 smartphones running firmware version earlier than Emily-AL00A 9.0.0.167 (C00E81R1P21T8).

How does the CVE-2019-5283 vulnerability affect Huawei P20 smartphones?

The CVE-2019-5283 vulnerability allows an attacker to bypass the Factory Reset Protection (FRP) feature in Huawei P20 smartphones, potentially compromising the security of the device.

What is Factory Reset Protection (FRP)?

Factory Reset Protection (FRP) is a security feature implemented in Android devices that prevents unauthorized access to the device after it has been reset to factory settings.

How can an attacker exploit the CVE-2019-5283 vulnerability?

An attacker can exploit the CVE-2019-5283 vulnerability by reconfiguring the Huawei P20 smartphone using the factory reset protection (FRP) function and logging in the Talkback mode to perform unauthorized actions.

How can I fix the CVE-2019-5283 vulnerability on my Huawei P20 smartphone?

To fix the CVE-2019-5283 vulnerability, update the firmware of your Huawei P20 smartphone to version Emily-AL00A 9.0.0.167 (C00E81R1P21T8) or later, as recommended by Huawei.

Vulnerability/
CVE-2019-5283

medium

4.6

4/6/2019

4/8/2024

CVE-2019-5283

First published: Tue Jun 04 2019(Updated: )

There is Factory Reset Protection (FRP) bypass security vulnerability in P20 Huawei smart phones versions earlier than Emily-AL00A 9.0.0.167 (C00E81R1P21T8). When re-configuring the mobile phone using the factory reset protection (FRP) function, an attacker can login the Talkback mode and can perform some operations to access the setting page. As a result, the FRP function is bypassed.

Credit: psirt@huawei.com

Affected Software	Affected Version	How to fix
Huawei P20 Firmware	<emily-al00a_9.0.0.167\(c00e81r1p21t8\)
HUAWEI P20

Never miss a vulnerability like this again

Reference Links

https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190424-01-frp-en

Frequently Asked Questions

What is CVE-2019-5283?
CVE-2019-5283 is a Factory Reset Protection (FRP) bypass security vulnerability in Huawei P20 smartphones running firmware version earlier than Emily-AL00A 9.0.0.167 (C00E81R1P21T8).
How does the CVE-2019-5283 vulnerability affect Huawei P20 smartphones?
The CVE-2019-5283 vulnerability allows an attacker to bypass the Factory Reset Protection (FRP) feature in Huawei P20 smartphones, potentially compromising the security of the device.
What is Factory Reset Protection (FRP)?
Factory Reset Protection (FRP) is a security feature implemented in Android devices that prevents unauthorized access to the device after it has been reset to factory settings.
How can an attacker exploit the CVE-2019-5283 vulnerability?
An attacker can exploit the CVE-2019-5283 vulnerability by reconfiguring the Huawei P20 smartphone using the factory reset protection (FRP) function and logging in the Talkback mode to perform unauthorized actions.
How can I fix the CVE-2019-5283 vulnerability on my Huawei P20 smartphone?
To fix the CVE-2019-5283 vulnerability, update the firmware of your Huawei P20 smartphone to version Emily-AL00A 9.0.0.167 (C00E81R1P21T8) or later, as recommended by Huawei.

collector/nvd-index
agent/severity
agent/references
agent/author
agent/type
agent/tags
agent/description
agent/event
agent/softwarecombine
agent/first-publish-date
agent/last-modified-date
collector/mitre-cve
source/MITRE
vendor/huawei
canonical/huawei p20 firmware
canonical/huawei p20

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.