Improper Authorization Vulnerability in HUAWEI Mate 20 Smartphones
CVE-2020-1831

2.4LOW

Key Information:

Vendor: Huawei
Status: Huawei Mate 20
Vendor: CVE Published:; 29 May 2020

Summary

HUAWEI Mate 20 smartphones running versions prior to 10.0.0.195 are susceptible to an improper authorization vulnerability. This flaw allows the digital balance feature to be manipulated beyond its intended usage limits after executing a series of operations via a connected PC. Exploiting this flaw could enable unauthorized users to circumvent the restrictions imposed by the digital balance functionality.

Affected Version(s)

HUAWEI Mate 20 Versions earlier than 10.0.0.195(SP31C00E74R3P8)

References

https://www.huawei.com/en/psirt/security-advisories/huawe...

x_refsource_CONFIRM

CVSS V3.1

Score:

2.4

Severity:

LOW

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Physical

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
May 29, 2020
Vulnerability Reserved
Nov 29, 2019