Information Leak Vulnerability in Huawei Honor Magic2 Phones
CVE-2020-1826

4.4MEDIUM

Key Information:

Vendor
Huawei
Vendor
CVE Published:
9 January 2020

Summary

The Huawei Honor Magic2 mobile phones are susceptible to an information leak due to the utilization of a weak encryption method in one of its modules. This vulnerability enables an attacker with root permissions to potentially exploit the flaw and access sensitive information stored on the device, posing a security risk to users. It is recommended that users upgrade to the latest software version to mitigate this issue.

Affected Version(s)

Honor Magic2 Versions earlier than 10.0.0.175(C00E59R2P11)

References

CVSS V3.1

Score:
4.4
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
High
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.