VYPR
← All advisories
Unrated severityNVD Advisory· Published Nov 29, 2019· Updated Aug 4, 2024

CVE-2019-5224

CVE-2019-5224

Description

P30 smartphones with versions earlier than ELLE-AL00B 9.1.0.193(C00E190R1P21) have an out of bounds read vulnerability. The system does not properly validate certain length parameter which an application transports to kernel. An attacker tricks the user to install a malicious application, successful exploit could cause out of bounds read and information disclosure.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Huawei P30 smartphones before ELLE-AL00B 9.1.0.193(C00E190R1P21) have an out-of-bounds read vulnerability that could lead to information disclosure when a user installs a malicious app.

Vulnerability

An out-of-bounds read vulnerability exists in Huawei P30 smartphones with versions earlier than ELLE-AL00B 9.1.0.193(C00E190R1P21). The system does not properly validate a certain length parameter that an application passes to the kernel, allowing an out-of-bounds read [1].

Exploitation

An attacker must trick the user into installing a malicious application. The application sends a crafted length parameter to the kernel, triggering the out-of-bounds read. No additional privileges or network access are required beyond the initial user interaction [1].

Impact

Successful exploitation could cause an out-of-bounds read, leading to information disclosure. The attacker may gain access to sensitive data from kernel memory [1].

Mitigation

Huawei has released a software update to fix this vulnerability. The resolved version is ELLE-AL00B 9.1.0.193(C00E190R1P21), published on 2019-08-21 [1]. Users should update to this version to mitigate the risk.

References
  1. Security Advisory - Out of Bounds Read Vulnerability on Several Smartphones

AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

2
  • Huawei/P30 smartphonesdescription
  • Huawei/P30llm-fuzzy
    Range: < 9.1.0.193(C00E190R1P21)

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

1

News mentions

0

No linked articles in our index yet.