CVE-2019-5235

MEDIUM

Huawei Smart Phones - Denial of Service via Null Pointer Dereference

Title source: llm

Description

Some Huawei smart phones have a null pointer dereference vulnerability. An attacker crafts specific packets and sends to the affected product to exploit this vulnerability. Successful exploitation may cause the affected phone to be abnormal.

References (1)

Core 1

Core References

Vendor Advisory x_refsource_misc

https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190821-01-smartphone-en

Scores

CVSS v3 5.3

EPSS 0.0025

EPSS Percentile 48.0%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Details

CWE

CWE-476

Status published

Products (50)

huawei/alp-al00b_firmware 8.0.0.153\(c00\)

huawei/alp-tl00b_firmware 8.0.0.129\(sp2c01\)

huawei/bla-al00b_firmware 8.0.0.129\(sp2c786\)

huawei/bla-al00b_firmware 8.0.0.153\(c00\)

huawei/bla-tl00b_firmware 8.0.0.129\(sp2c01\)

huawei/charlotte-al00a_firmware 8.1.0.176\(c00\)

huawei/charlotte-tl00b_firmware 8.1.0.176\(c01\)

huawei/columbia-al10b_firmware 8.1.0.163\(c00\)

huawei/columbia-al10i_firmware 8.1.0.150\(c675custc675d2\)

huawei/columbia-l29d_firmware 8.1.0.146\(c461\)

... and 40 more

Published Dec 14, 2019

Tracked Since Feb 18, 2026