Insufficient Authentication Vulnerability in Huawei Band 2 and Honor Band 3

Insufficient Authentication Vulnerability in Huawei Band 2 and Honor Band 3

CVE-2019-5218 · HIGH Severity

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

There is an insufficient authentication vulnerability in Huawei Band 2 and Honor Band 3. The band does not sufficiently authenticate the device try to connect to it in certain scenario. Successful exploit could allow the attacker to spoof then connect to the band.

Learn more about our Web Application Penetration Testing UK.