Information Leak Vulnerability in Huawei Honor Magic2 Phones
CVE-2020-1826
4.4MEDIUM
Summary
The Huawei Honor Magic2 mobile phones are susceptible to an information leak due to the utilization of a weak encryption method in one of its modules. This vulnerability enables an attacker with root permissions to potentially exploit the flaw and access sensitive information stored on the device, posing a security risk to users. It is recommended that users upgrade to the latest software version to mitigate this issue.
Affected Version(s)
Honor Magic2 Versions earlier than 10.0.0.175(C00E59R2P11)
References
CVSS V3.1
Score:
4.4
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
High
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved