Description
Honor 10 Lite, Honor 8A, Huawei Y6 mobile phones with the versions before 9.1.0.217(C00E215R3P1), the versions before 9.1.0.205(C00E97R1P9), the versions before 9.1.0.205(C00E97R2P2) have an information leak vulnerability. Due to improper function error records of some module, an attacker with the access permission may exploit the vulnerability to obtain some information.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_misc
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191030-01-phone-en
Scores
CVSS v3
3.3
EPSS
0.0006
EPSS Percentile
17.4%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Details
Status
published
Products (3)
huawei/honor_10_lite_firmware
< 9.1.0.217\(c00e215r3p1\)
huawei/honor_8a_firmware
< 9.1.0.205\(c00e97r1p9\)
huawei/huawei_y6_firmware
< 9.1.0.205\(c00e97r2p2\)
Published
Nov 13, 2019
Tracked Since
Feb 18, 2026