CVE-2019-19412

Huawei smart phones have a Factory Reset Protection (FRP) bypass security vulnerability. When re-configuring the mobile phone using the factory reset protection (FRP) function, an attacker login the Talkback mode and can perform some operations to install a third-Party application. Affected products can be found in https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-frp-en.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
4.6 MEDIUM
PHYSICAL
LOW
NONE
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
huaweiCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 5%
VendorProductVersion
huaweialp-al00b_firmware
𝑥
< 9.0.0.181\(c00e87r2p20t8\)
huaweialp-l09_firmware
𝑥
< 9.0.0.201\(c432e4r1p9\)
huaweialp-l29_firmware
𝑥
< 9.0.0.177\(c185e2r1p12t8\)
huaweialp-l29_firmware
𝑥
< 9.0.0.195\(c636e2r1p12\)
huaweianne-al00_firmware
𝑥
< 8.0.0.168\(c00\)
huaweibla-al00b_firmware
𝑥
< 9.0.0.181\(c00e88r2p15t8\)
huaweibla-l09c_firmware
𝑥
< 9.0.0.177\(c185e2r1p13t8\)
huaweibla-l09c_firmware
𝑥
< 9.0.0.206\(c432e4r1p11\)
huaweibla-l29c_firmware
𝑥
< 9.0.0.179\(c576e2r1p7t8\)
huaweibla-l29c_firmware
𝑥
< 9.0.0.194\(c185e2r1p13\)
huaweibla-l29c_firmware
𝑥
< 9.0.0.206\(c432e4r1p11\)
huaweibla-l29c_firmware
𝑥
< 9.0.0.210\(c635e4r1p13\)
huaweiberkeley-al20_firmware
𝑥
< 9.0.0.156\(c00e156r2p14t8\)
huaweiberkeley-l09_firmware
𝑥
< 8.0.0.172\(c432\)
huaweiberkeley-l09_firmware
𝑥
< 8.0.0.173\(c636\)
huaweiemily-l29c_firmware
𝑥
< 9.0.0.159\(c185e2r1p12t8\)
huaweiemily-l29c_firmware
𝑥
< 9.0.0.159\(c461e2r1p11t8\)
huaweiemily-l29c_firmware
𝑥
< 9.0.0.160\(c432e7r1p11t8\)
huaweiemily-l29c_firmware
𝑥
< 9.0.0.165\(c605e2r1p12\)
huaweiemily-l29c_firmware
𝑥
< 9.0.0.168\(c636e7r1p13t8\)
huaweiemily-l29c_firmware
𝑥
< 9.0.0.168\(c782e3r1p11t8\)
huaweiemily-l29c_firmware
𝑥
< 9.0.0.196\(c635e2r1p11t8\)
huaweifigo-l03_firmware
𝑥
< 9.1.0.130\(c605e6r1p5t8\)
huaweifigo-l21_firmware
𝑥
< 9.1.0.130\(c185e6r1p5t8\)
huaweifigo-l21_firmware
𝑥
< 9.1.0.130\(c635e6r1p5t8\)
huaweifigo-l23_firmware
𝑥
< 9.1.0.130\(c605e6r1p5t8\)
huaweifigo-l31_firmware
𝑥
< 9.1.0.130\(c432e8r1p5t8\)
huaweiflorida-l03_firmware
𝑥
< 9.1.0.121\(c605e5r1p1t8\)
huaweiflorida-l21_firmware
𝑥
< 8.0.0.129\(c605\)
huaweiflorida-l21_firmware
𝑥
< 8.0.0.131\(c432\)
huaweiflorida-l21_firmware
𝑥
< 8.0.0.132\(c185\)
huaweiflorida-l22_firmware
𝑥
< 8.0.0.132\(c636\)
huaweiflorida-l23_firmware
𝑥
< 8.0.0.144\(c605\)
huaweip_smart_firmware
𝑥
< 9.1.0.130\(c185e6r1p5t8\)
huaweip_smart_firmware
𝑥
< 9.1.0.130\(c605e6r1p5t8\)
huaweip_smart_firmware
𝑥
< 9.1.0.124\(c636e6r1p5t8\)
huaweiy7s_firmware
𝑥
< 9.1.0.124\(c636e6r1p5t8\)
huaweip20_lite_firmware
𝑥
< 8.0.0.148\(c635\)
huaweip20_lite_firmware
𝑥
< 8.0.0.155\(c185\)
huaweip20_lite_firmware
𝑥
< 8.0.0.155\(c605\)
huaweip20_lite_firmware
𝑥
< 8.0.0.156\(c605\)
huaweip20_lite_firmware
𝑥
< 8.0.0.157\(c432\)
huaweinova_3e_firmware
𝑥
< 8.0.0.147\(c461\)
huaweinova_3e_firmware
𝑥
< 8.0.0.148\(zafc185\)
huaweinova_3e_firmware
𝑥
< 8.0.0.160\(c185\)
huaweinova_3e_firmware
𝑥
< 8.0.0.160\(c605\)
huaweinova_3e_firmware
𝑥
< 8.0.0.168\(c432\)
huaweinova_3e_firmware
𝑥
< 8.0.0.172\(c636\)
huaweip20_lite_firmware
𝑥
< 8.0.0.147\(c461\)
huaweip20_lite_firmware
𝑥
< 8.0.0.148\(zafc185\)
huaweip20_lite_firmware
𝑥
< 8.0.0.160\(c185\)
huaweip20_lite_firmware
𝑥
< 8.0.0.160\(c605\)
huaweip20_lite_firmware
𝑥
< 8.0.0.168\(c432\)
huaweip20_lite_firmware
𝑥
< 8.0.0.172\(c636\)
huaweihonor_view_10_firmware
𝑥
< 9.0.0.202\(c567e6r1p12t8\)
huaweileland-al00a_firmware
𝑥
< 8.0.0.182\(c00\)
huaweileland-l21a_firmware
𝑥
< 8.0.0.135\(c185\)
huaweileland-l21a_firmware
𝑥
< 9.1.0.118\(c636e4r1p1t8\)
huaweileland-l22a_firmware
𝑥
< 9.1.0.118\(c636e4r1p1t8\)
huaweileland-l22c_firmware
𝑥
< 9.1.0.118\(c636e4r1p1t8\)
huaweileland-l31a_firmware
𝑥
< 8.0.0.139\(c432\)
𝑥
= Vulnerable software versions
References
https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-frp-en
https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-frp-en