CVE-2019-5276
HIGHHuawei smart phones <ELLE-AL00B 9.1.0.222(C00E220R2P1 - Buffer Over...
Title source: llmDescription
Huawei smart phones with earlier versions than ELLE-AL00B 9.1.0.222(C00E220R2P1) have a buffer overflow vulnerability. An attacker may intercept and tamper with the packet in the local area network (LAN) to exploit this vulnerability. Successful exploitation may cause the affected phone abnormal.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_confirm
https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191218-02-smartphone-en
Scores
CVSS v3
8.8
EPSS
0.0015
EPSS Percentile
35.6%
Attack Vector
ADJACENT_NETWORK
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-120
Status
published
Products (1)
huawei/elle-al00b_firmware
< 9.1.0.222\(c00e220r2p1\)
Published
Dec 23, 2019
Tracked Since
Feb 18, 2026