Insufficient Integrity Check in HUAWEI P30 and HUAWEI P30 Pro
CVE-2020-1834

4.6MEDIUM

Key Information:

Vendor
Huawei
Vendor
CVE Published:
18 June 2020

Summary

The HUAWEI P30 and HUAWEI P30 Pro devices exhibit an insufficient integrity check vulnerability. This issue arises as the system fails to adequately validate the integrity of certain software packages. An attacker may exploit this vulnerability to load a maliciously crafted software package onto the affected device, potentially compromising its security and functionality.

Affected Version(s)

HUAWEI P30;HUAWEI P30 Pro Versions earlier than 10.1.0.135(C00E135R2P11)

HUAWEI P30;HUAWEI P30 Pro Versions earlier than 10.1.0.135(C00E135R2P8)

References

CVSS V3.1

Score:
4.6
Severity:
MEDIUM
Confidentiality:
None
Integrity:
High
Availability:
None
Attack Vector:
Physical
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.