Microsoft experts discovered privilege escalation and arbitrary code execution vulnerabilities in a tool from Huawei. Huaweis PCManager tool pre-installed on MateBook laptops is affected by a vulnerability (CVE-2019-5241) that can be exploited by an attacker for local privilege escalation. An attacker can trigger the flaw by tricking the victims into executing a malicious application. Both flaws were classified as high severity The Chinese telecommunication giant addressed both vulnerabilities in January. The two vulnerabilities were disclosed in February at Microsoft’s Blue Hat conference in Israel.”]
Source: https://securityaffairs.co/wordpress/82893/hacking/huawei-tool-flaws.html