Double Free in Huawei Emily-l29c
CVE-2019-5236
Huawei smart phones Emily-L29C with versions of 8.1.0.132a(C432), 8.1.0.135(C782), 8.1.0.154(C10), 8.1.0.154(C461), 8.1.0.154(C635), 8.1.0.156(C185), 8.1.0.156(C605), 8.1.0.159(C636) have a double free vulnerability. An attacker can trick…
Vulnerability class: Double Free
EPSS: 0.006 (43.3th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 6.3 (Medium). Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L.
Affected products
- Huawei Emily-l29c — versions 8.1.0.132a(C432), 8.1.0.135(C782), 8.1.0.154(C10)
- Huawei Emily-l29c_firmware — versions 8.1.0.132a\(c432\), 8.1.0.135\(c782\), 8.1.0.154\(c10\)
Weakness classification (CWE)
References
- psirt@huawei.com (x_refsource_CONFIRM, Vendor Advisory)
Frequently asked questions
- What is CVE-2019-5236?
- CVE-2019-5236 is a medium-severity vulnerability in Huawei Emily-l29c, classified under Double Free. CVSS score: 6.3/10. Published 2019-08-08.
- How severe is CVE-2019-5236?
- Medium severity. CVSS v3 base score is 6.3 out of 10.