{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-16T07:12:02.014","vulnerabilities":[{"cve":{"id":"CVE-2019-5246","sourceIdentifier":"psirt@huawei.com","published":"2019-11-13T00:15:11.653","lastModified":"2024-11-21T04:44:35.937","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Smartphones with software of ELLE-AL00B 9.1.0.109(C00E106R1P21), 9.1.0.113(C00E110R1P21), 9.1.0.125(C00E120R1P21), 9.1.0.135(C00E130R1P21), 9.1.0.153(C00E150R1P21), 9.1.0.155(C00E150R1P21), 9.1.0.162(C00E160R2P1) have an insufficient verification vulnerability. The system does not verify certain parameters sufficiently, an attacker should connect to the phone and gain high privilege to launch the attack. Successful exploit could cause DOS or malicious code execution."},{"lang":"es","value":"Teléfonos Inteligentes con software de ELLE-AL00B versiones 9.1.0.109(C00E106R1P21), 9.1.0.113(C00E110R1P21), 9.1.0.125(C00E120R1P21), 9.1.0.135(C00E130R1P21), 9.1.0.153(C00E150R1P21), 9.1.0.155(C00E150R1P21), 9.1.0.162(C00E160R2P1), presentan una vulnerabilidad de comprobación insuficiente. El sistema no comprueba ciertos parámetros lo suficiente, un atacante debe conectarse al teléfono y alcanzar un privilegio alto para iniciar el ataque. Una explotación con éxito podría causar una ejecución de código malicioso o una DOS."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:P/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H","baseScore":6.2,"baseSeverity":"MEDIUM","attackVector":"PHYSICAL","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":0.3,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:L/AC:L/Au:N/C:P/I:P/A:P","baseScore":4.6,"accessVector":"LOCAL","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":3.9,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-345"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:huawei:elle-al00b_firmware:9.1.0.109\\(c00e106r1p21\\):*:*:*:*:*:*:*","matchCriteriaId":"3F60133F-DFD1-4F05-8A72-2A5174655B5F"},{"vulnerable":true,"criteria":"cpe:2.3:o:huawei:elle-al00b_firmware:9.1.0.113\\(c00e110r1p21\\):*:*:*:*:*:*:*","matchCriteriaId":"0A11D57A-E0FA-4171-87E0-840D955B353B"},{"vulnerable":true,"criteria":"cpe:2.3:o:huawei:elle-al00b_firmware:9.1.0.125\\(c00e120r1p21\\):*:*:*:*:*:*:*","matchCriteriaId":"51633B94-AAC4-44EB-9103-5CA60B04101C"},{"vulnerable":true,"criteria":"cpe:2.3:o:huawei:elle-al00b_firmware:9.1.0.135\\(c00e130r1p21\\):*:*:*:*:*:*:*","matchCriteriaId":"637B19C5-5BCC-42D8-876E-907FCA1B6026"},{"vulnerable":true,"criteria":"cpe:2.3:o:huawei:elle-al00b_firmware:9.1.0.153\\(c00e150r1p21\\):*:*:*:*:*:*:*","matchCriteriaId":"895DDB0D-4DE1-48ED-8CEB-B4424EEE579D"},{"vulnerable":true,"criteria":"cpe:2.3:o:huawei:elle-al00b_firmware:9.1.0.155\\(c00e150r1p21\\):*:*:*:*:*:*:*","matchCriteriaId":"A0854055-3874-4113-9094-2FAA9EC6DFA0"},{"vulnerable":true,"criteria":"cpe:2.3:o:huawei:elle-al00b_firmware:9.1.0.162\\(c00e160r2p1\\):*:*:*:*:*:*:*","matchCriteriaId":"6C3DEAC5-9F49-4967-BCD4-DCF58ACCBC61"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:huawei:elle-al00b:-:*:*:*:*:*:*:*","matchCriteriaId":"0FE97479-E4F0-4C87-B6EE-EE4AE685DE5A"}]}]}],"references":[{"url":"http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190925-01-codeexecution-en","source":"psirt@huawei.com","tags":["Vendor Advisory"]},{"url":"http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190925-01-codeexecution-en","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}}]}