CVE-2019-5218

Summary

There is an insufficient authentication vulnerability in Huawei Band 2 and Honor Band 3. The band does not sufficiently authenticate the device try to connect to it in certain scenario. Successful exploit could allow the attacker to spoof then connect to the band.

Affected Software

VendorProductVersion RangeStatus
n/aHuawei Band 2, Honor Band 3Versions earlier than Eris-B19/Eris-B29 1.2.53, Versions earlier than NYX-B10HN 1.5.53affected

Weaknesses

  • Insufficient Authentication

ADP Enrichment

CVE Program Container

Additional References

References