Information Disclosure Vulnerability in HUAWEI Mate 30 Bluetooth System
CVE-2020-1835

6.5MEDIUM

Key Information:

Vendor: Huawei
Status: Huawei Mate 30
Vendor: CVE Published:; 18 June 2020

Summary

The HUAWEI Mate 30, prior to version 10.1.0.126(C00E125R5P3), is affected by a vulnerability allowing information disclosure through Bluetooth connections. Due to a flaw in the logic processing Bluetooth connections, an attacker with access could exploit this issue by masquerading as an authenticated Bluetooth peer. This could potentially lead to unauthorized access to sensitive information, highlighting the importance of updating to the latest software version.

Affected Version(s)

HUAWEI Mate 30 Versions earlier than 10.1.0.126(C00E125R5P3)

References

https://www.huawei.com/en/psirt/security-advisories/huawe...

x_refsource_MISC

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jun 18, 2020
Vulnerability Reserved
Nov 29, 2019