CVE-2019-5281
Description
There is an information leak vulnerability in some Huawei phones, versions earlier than Jackman-L21 8.2.0.155(C185R1P2). When a local attacker uses the camera of a smartphone, the attacker can exploit this vulnerability to obtain sensitive information by performing a series of operations.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
An information leak vulnerability in Huawei Y9 2019 (Jackman-L21) allows a local attacker with camera access to obtain sensitive information.
Vulnerability
A local information leak vulnerability exists in the camera functionality of Huawei Y9 2019 smartphones running Jackman-L21 firmware versions earlier than 8.2.0.155(C185R1P2) [1]. The exact code path is not publicly disclosed, but the vulnerability can be triggered when the camera application is used.
Exploitation
An attacker with local access to the device (e.g., physical possession) can exploit this vulnerability by using the camera and performing a series of unspecified operations [1]. No authentication or special privileges beyond normal camera access are required.
Impact
Successful exploitation allows the attacker to obtain sensitive information from the device [1]. The nature of the leaked information is not detailed in the advisory, but it constitutes a confidentiality breach.
Mitigation
Huawei has released a software update to fix this vulnerability. The resolved version is Jackman-L21 8.2.0.155(C185R1P2) [1]. Users should update their devices to this version or later. No workarounds are documented, and the vulnerability is not listed on the CISA Known Exploited Vulnerabilities catalog.
AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
2- Range: <8.2.0.155(C185R1P2)
- Range: Version Earlier Than Jackman-L21 8.2.0.155(C185R1P2)
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- www.huawei.com/en/psirt/security-advisories/huawei-sa-20190218-01-smartphone-enmitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.