Vulnerability Details CVE-2019-5218
There is an insufficient authentication vulnerability in Huawei Band 2 and Honor Band 3. The band does not sufficiently authenticate the device try to connect to it in certain scenario. Successful exploit could allow the attacker to spoof then connect to the band.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 28.9%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 5.8
References
Products affected by CVE-2019-5218
-
cpe:2.3:h:huawei:band_2:-
-
cpe:2.3:h:huawei:band_3:-
-
cpe:2.3:o:huawei:band_2_firmware:-
-
cpe:2.3:o:huawei:band_3_firmware:-