Logic Error Vulnerability in HUAWEI Smartphones
CVE-2020-1795

2.4LOW

Key Information:

Vendor: Huawei
Status: Huawei Mate 20;huawei Mate 30 Pro
Vendor: CVE Published:; 20 March 2020

What is CVE-2020-1795?

A logic error vulnerability exists in certain HUAWEI smartphones that allows attackers to potentially bypass the Digital Balance restrictions. This vulnerability arises when the software fails to impose appropriate constraints on operations while the Digital Balance feature is active. This presents a risk that, if exploited, could enable unauthorized manipulation of the Digital Balance limits, impacting the intended functionality of the device.

Affected Version(s)

HUAWEI Mate 20;HUAWEI Mate 30 Pro Versions earlier than 10.0.0.188(C00E74R3P8)

HUAWEI Mate 20;HUAWEI Mate 30 Pro Versions earlier than 10.0.0.203(C00E202R7P2)

References

https://www.huawei.com/en/psirt/security-advisories/huawe...

x_refsource_MISC

CVSS V3.1

Score:

2.4

Severity:

LOW

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Physical

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 20, 2020
Vulnerability Reserved
Nov 29, 2019

Huawei

What is CVE-2020-1795?

Affected Version(s)

References

CVSS V3.1

Timeline