CVE-2019-5235

Home/CVE/Some Huawei smart phones have a null pointer dereference vulnerability. An attacker crafts specific packets and sends to

CVE

Some Huawei smart phones have a null pointer dereference vulnerability. An attacker crafts specific packets and sends to

Some Huawei smart phones have a null pointer dereference vulnerability. An attacker crafts specific packets and sends to the affected product to exploit this vulnerability. Successful exploitation may cause the affected phone to be abnormal.

MEDIUM · CVSS 5.3 EPSS 0.00247

Monitor

No active-exploitation, high-EPSS, or public-exploit signals - routine patching cadence

Sigma rules0 YARA rules0

⬡

Weakness Classification

CWE-476NULL Pointer Dereference

▤

Affected Products & Versions

huawei alp-al00b firmwareall versions
huawei alp-tl00b firmwareall versions
huawei bla-al00b firmwareall versions
huawei bla-tl00b firmwareall versions
huawei charlotte-al00a firmwareall versions
huawei charlotte-tl00b firmwareall versions
huawei columbia-al10b firmwareall versions
huawei columbia-al10i firmwareall versions
Show all 44 affected productshuawei columbia-l29d firmwareall versions
huawei columbia-tl00d firmwareall versions
huawei elle-al00b firmwareall versions
huawei elle-tl00b firmwareall versions
huawei emily-al00a firmwareall versions
huawei emily-tl00b firmwareall versions
huawei ever-al00b firmwareall versions
huawei ever-l29b firmwareall versions
huawei harry-al00c firmwareall versions
huawei harry-al10b firmwareall versions
huawei harry-tl00c firmwareall versions
huawei hima-al00b firmwareall versions
huawei jackman-l21 firmwareall versions
huawei jackman-l22 firmwareall versions
huawei jackman-l23 firmwareall versions
huawei johnson-al00ic firmwareall versions
huawei johnson-al10c firmwareall versions
huawei johnson-l21c firmwareall versions
huawei johnson-l21d firmwareall versions
huawei johnson-l22c firmwareall versions
huawei johnson-l22d firmwareall versions
huawei johnson-l23c firmwareall versions
huawei johnson-l42ic firmwareall versions
huawei johnson-l42ie firmwareall versions
huawei johnson-l42if firmwareall versions
huawei johnson-tl00d firmwareall versions
huawei johnson-tl00f firmwareall versions
huawei laya-al00ep firmwareall versions
huawei neo-al00d firmwareall versions
huawei potter-al00c firmwareall versions
huawei potter-al10a firmwareall versions
huawei princeton-al10b firmwareall versions
huawei princeton-al10d firmwareall versions
huawei princeton-al10i firmwareall versions
huawei princeton-tl10c firmwareall versions
huawei tony-al00b firmwareall versions

▣

Scoring & Timeline

5.3

MEDIUM · CVSS v3.1 · psirt@huawei.com

View on NVD

Attack Vector

Network Adjacent Local Physical

Attack Complexity

Low High

Privileges Required

None Low High

User Interaction

None Required

Scope

Unchanged Changed

Confidentiality

None Low High

Integrity

None Low High

Availability

None Low High

Published to NVD14 Dec 2019 · 12:15 AM

CVSS VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

🔗

References & Sources

Source URLs (vendor pages, mailing lists, write-ups). Exploit/PoC links are in their own section above to avoid duplication.

https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190821-01-smartphone-enVendor Advisory

Intelligence Graph · click any node to traverse

CVETechnique ActorTool Family

drag to reposition · click any node to traverse · button top-right enlarges

External lookups - second-class, for what we don’t hold ourselves

NVD CVE.org CISA Vulners Exploit-DB GitHub PoC VulnCheck KEV GreyNoise

Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities

Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs

Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures

Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1

About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service

threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin