Huawei: >> Y9 2019 Firmware >> 9.1.0.264(c185e2r5p1t8) Security Vulnerabilities
CVE-2019-2215
A use-after-free in binder.c allows an elevation of privilege from an application to the Linux Kernel. No user interaction is required to exploit this vulnerability, however exploitation does require either the installation of a malicious local application or a separate vulnerability in a network facing application.Product: AndroidAndroid ID: A-141720095
Known exploited
CVSS Score
7.8
EPSS Score
0.482
Published
2019-10-11
There is an information leak vulnerability in some Huawei phones, versions earlier than Jackman-L21 8.2.0.155(C185R1P2). When a local attacker uses the camera of a smartphone, the attacker can exploit this vulnerability to obtain sensitive information by performing a series of operations.
CVSS Score
4.6
EPSS Score
0.0
Published
2019-06-04