CVE-2019-5213

Summary

Honor play smartphones with versions earlier than Cornell-AL00A 9.1.0.321(C00E320R1P1T8) have an insufficient authentication vulnerability. The system has a logic judge error under certain scenario. Successful exploit could allow the attacker to modify the alarm clock settings after a serious of uncommon operations without unlock the screen lock.

Affected Software

VendorProductVersion RangeStatus
n/aHonor playVersions earlier than Cornell-AL00A 9.1.0.321(C00E320R1P1T8)affected

Weaknesses

  • Insufficient Authentication

ADP Enrichment

CVE Program Container

Additional References

References