CVE-2019-5299

Huawei mobile phones Hima-AL00Bhave with Versions earlier than HMA-AL00C00B175 have a signature verification bypass vulnerability. Attackers can induce users to install malicious applications. Due to a defect in the signature verification logic, the malicious applications can invoke specific interface to execute malicious code. A successful exploit may result in the execution of arbitrary code.

Published : 2019-08-13 21:15 Updated : 2019-08-20 15:36

6.8
CVSS Score More info
Score 6.8 / 10
6.8

CPE

There is no CPE for this CVE.

CWE

ID Name Description Links
CWE-254 Security Features Software security is not security software. Here we're concerned with topics like authentication, access control, confidentiality, cryptography, and privilege management. CVE

History of changes

Date Event
2019-08-20 15:36
2019-08-13 21:15

New CVE