CVE-2019-19412

Description

Huawei smart phones have a Factory Reset Protection (FRP) bypass security vulnerability. When re-configuring the mobile phone using the factory reset protection (FRP) function, an attacker login the Talkback mode and can perform some operations to install a third-Party application. Affected products can be found in https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-frp-en.

Affected products

• Huawei / ALP-AL00Bearlier than 9.0.0.181(C00E87R2P20T8) – earlier than 9.0.0.181(C00E87R2P20T8)
• Huawei / ALP-L09earlier than 9.0.0.201(C432E4R1P9) – earlier than 9.0.0.201(C432E4R1P9)
• Huawei / ALP-L29earlier than 9.0.0.177(C185E2R1P12T8) – earlier than 9.0.0.177(C185E2R1P12T8)
• Huawei / ALP-L29earlier than 9.0.0.195(C636E2R1P12) – earlier than 9.0.0.195(C636E2R1P12)
• Huawei / Anne-AL00earlier than 8.0.0.168(C00) – earlier than 8.0.0.168(C00)
• Huawei / Berkeley-AL20earlier than 9.0.0.156(C00E156R2P14T8) – earlier than 9.0.0.156(C00E156R2P14T8)
• Huawei / Berkeley-L09earlier than 8.0.0.172(C432) – earlier than 8.0.0.172(C432)
• Huawei / Berkeley-L09earlier than 8.0.0.173(C636) – earlier than 8.0.0.173(C636)
• Huawei / BLA-AL00Bearlier than 9.0.0.181(C00E88R2P15T8) – earlier than 9.0.0.181(C00E88R2P15T8)
• Huawei / BLA-L09Cearlier than 9.0.0.177(C185E2R1P13T8) – earlier than 9.0.0.177(C185E2R1P13T8)
• Huawei / BLA-L09Cearlier than 9.0.0.206(C432E4R1P11) – earlier than 9.0.0.206(C432E4R1P11)
• Huawei / BLA-L29Cearlier than 9.0.0.210(C635E4R1P13) – earlier than 9.0.0.210(C635E4R1P13)
• Huawei / BLA-L29Cearlier than 9.0.0.179(C576E2R1P7T8) – earlier than 9.0.0.179(C576E2R1P7T8)
• Huawei / BLA-L29Cearlier than 9.0.0.194(C185E2R1P13) – earlier than 9.0.0.194(C185E2R1P13)
• Huawei / BLA-L29Cearlier than 9.0.0.206(C432E4R1P11) – earlier than 9.0.0.206(C432E4R1P11)
• Huawei / Emily-L29Cearlier than 9.0.0.159(C185E2R1P12T8) – earlier than 9.0.0.159(C185E2R1P12T8)
• Huawei / Emily-L29Cearlier than 9.0.0.159(C461E2R1P11T8) – earlier than 9.0.0.159(C461E2R1P11T8)
• Huawei / Emily-L29Cearlier than 9.0.0.160(C432E7R1P11T8) – earlier than 9.0.0.160(C432E7R1P11T8)
• Huawei / Emily-L29Cearlier than 9.0.0.165(C605E2R1P12) – earlier than 9.0.0.165(C605E2R1P12)
• Huawei / Emily-L29Cearlier than 9.0.0.168(C636E7R1P13T8) – earlier than 9.0.0.168(C636E7R1P13T8)
• Huawei / Emily-L29Cearlier than 9.0.0.168(C782E3R1P11T8) – earlier than 9.0.0.168(C782E3R1P11T8)
• Huawei / Emily-L29Cearlier than 9.0.0.196(C635E2R1P11T8) – earlier than 9.0.0.196(C635E2R1P11T8)
• Huawei / Figo-L03earlier than 9.1.0.130(C605E6R1P5T8) – earlier than 9.1.0.130(C605E6R1P5T8)
• Huawei / Figo-L21earlier than 9.1.0.130(C185E6R1P5T8) – earlier than 9.1.0.130(C185E6R1P5T8)
• Huawei / Figo-L21earlier than 9.1.0.130(C635E6R1P5T8) – earlier than 9.1.0.130(C635E6R1P5T8)
• Huawei / Figo-L23earlier than 9.1.0.130(C605E6R1P5T8) – earlier than 9.1.0.130(C605E6R1P5T8)
• Huawei / Figo-L31earlier than 9.1.0.130(C432E8R1P5T8) – earlier than 9.1.0.130(C432E8R1P5T8)
• Huawei / Florida-L03earlier than 9.1.0.121(C605E5R1P1T8) – earlier than 9.1.0.121(C605E5R1P1T8)
• Huawei / Florida-L21earlier than 8.0.0.129(C605) – earlier than 8.0.0.129(C605)
• Huawei / Florida-L21earlier than 8.0.0.131(C432) – earlier than 8.0.0.131(C432)
• Huawei / Florida-L21earlier than 8.0.0.132(C185) – earlier than 8.0.0.132(C185)
• Huawei / Florida-L22earlier than 8.0.0.132(C636) – earlier than 8.0.0.132(C636)
• Huawei / Florida-L23earlier than 8.0.0.144(C605) – earlier than 8.0.0.144(C605)
• Huawei / Honor View 10earlier than 9.0.0.202(C567E6R1P12T8) – earlier than 9.0.0.202(C567E6R1P12T8)
• Huawei / HUAWEI nova 3e,HUAWEI P20 liteearlier than 8.0.0.147(C461) – earlier than 8.0.0.147(C461)
• Huawei / HUAWEI nova 3e,HUAWEI P20 liteearlier than 8.0.0.148(ZAFC185) – earlier than 8.0.0.148(ZAFC185)
• Huawei / HUAWEI nova 3e,HUAWEI P20 liteearlier than 8.0.0.160(C185) – earlier than 8.0.0.160(C185)
• Huawei / HUAWEI nova 3e,HUAWEI P20 liteearlier than 8.0.0.160(C605) – earlier than 8.0.0.160(C605)
• Huawei / HUAWEI nova 3e,HUAWEI P20 liteearlier than 8.0.0.168(C432) – earlier than 8.0.0.168(C432)
• Huawei / HUAWEI nova 3e,HUAWEI P20 liteearlier than 8.0.0.172(C636) – earlier than 8.0.0.172(C636)
• Huawei / HUAWEI P20 liteearlier than 8.0.0.157(C432) – earlier than 8.0.0.157(C432)
• Huawei / HUAWEI P20 liteearlier than 8.0.0.148(C635) – earlier than 8.0.0.148(C635)
• Huawei / HUAWEI P20 liteearlier than 8.0.0.155(C185) – earlier than 8.0.0.155(C185)
• Huawei / HUAWEI P20 liteearlier than 8.0.0.155(C605) – earlier than 8.0.0.155(C605)
• Huawei / HUAWEI P20 liteearlier than 8.0.0.156(C605) – earlier than 8.0.0.156(C605)
• Huawei / HUAWEI P smartearlier than 9.1.0.130(C185E6R1P5T8) – earlier than 9.1.0.130(C185E6R1P5T8)
• Huawei / HUAWEI P smartearlier than 9.1.0.130(C605E6R1P5T8) – earlier than 9.1.0.130(C605E6R1P5T8)
• Huawei / HUAWEI P smart,HUAWEI Y7searlier than 9.1.0.124(C636E6R1P5T8) – earlier than 9.1.0.124(C636E6R1P5T8)
• Huawei / Leland-AL00Aearlier than 8.0.0.182(C00) – earlier than 8.0.0.182(C00)
• Huawei / Leland-L21Aearlier than 8.0.0.135(C185) – earlier than 8.0.0.135(C185)
• Huawei / Leland-L21Aearlier than 9.1.0.118(C636E4R1P1T8) – earlier than 9.1.0.118(C636E4R1P1T8)
• Huawei / Leland-L22Aearlier than 9.1.0.118(C636E4R1P1T8) – earlier than 9.1.0.118(C636E4R1P1T8)
• Huawei / Leland-L22Cearlier than 9.1.0.118(C636E4R1P1T8) – earlier than 9.1.0.118(C636E4R1P1T8)
• Huawei / Leland-L31Aearlier than 8.0.0.139(C432) – earlier than 8.0.0.139(C432)

References

• VENDOR_ADVISORYhttps://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-frp-en