1. Home
  2. CVE Database
  3. CVE-2019-5235
MEDIUM · 5.3

CVE-2019-5235

Some Huawei smart phones have a null pointer dereference vulnerability. An attacker crafts specific packets and sends to the affected product to exploit this vulnerability. Successful exploitation may...

Vulnerability Description

Some Huawei smart phones have a null pointer dereference vulnerability. An attacker crafts specific packets and sends to the affected product to exploit this vulnerability. Successful exploitation may cause the affected phone to be abnormal.

CVSS Score

5.3

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
NONE
Integrity
NONE
Availability
LOW

Affected Products

VendorProductVersions
HuaweiAlp-Al00B Firmware8.0.0.153\(c00\)
HuaweiAlp-Al00B-
HuaweiAlp-Tl00B Firmware8.0.0.129\(sp2c01\)
HuaweiAlp-Tl00B-
HuaweiBla-Al00B Firmware8.0.0.129\(sp2c786\)
HuaweiBla-Al00B-
HuaweiBla-Tl00B Firmware8.0.0.129\(sp2c01\)
HuaweiBla-Tl00B-
HuaweiCharlotte-Al00A Firmware8.1.0.176\(c00\)
HuaweiCharlotte-Al00A-
HuaweiCharlotte-Tl00B Firmware8.1.0.176\(c01\)
HuaweiCharlotte-Tl00B-
HuaweiColumbia-Al10B Firmware8.1.0.163\(c00\)
HuaweiColumbia-Al10B-
HuaweiColumbia-Al10I Firmware8.1.0.150\(c675custc675d2\)
HuaweiColumbia-Al10I-
HuaweiColumbia-L29D Firmware8.1.0.146\(c461\)
HuaweiColumbia-L29D-
HuaweiColumbia-Tl00D Firmware8.1.0.186\(c01gt\)
HuaweiColumbia-Tl00D-

Related Weaknesses (CWE)

CWE-476

References

FAQ

What is CVE-2019-5235?

CVE-2019-5235 is a vulnerability with a CVSS score of 5.3 (MEDIUM). Some Huawei smart phones have a null pointer dereference vulnerability. An attacker crafts specific packets and sends to the affected product to exploit this vulnerability. Successful exploitation may...

How severe is CVE-2019-5235?

CVE-2019-5235 has been rated MEDIUM with a CVSS base score of 5.3/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2019-5235?

Check the references section above for vendor advisories and patch information. Affected products include: Huawei Alp-Al00B Firmware, Huawei Alp-Al00B, Huawei Alp-Tl00B Firmware, Huawei Alp-Tl00B, Huawei Bla-Al00B Firmware.