Path Traversal Vulnerability in HUAWEI P30 Pro Software
CVE-2020-9106
4.6MEDIUM
Summary
The HUAWEI P30 Pro, prior to software version 10.1.0.160(C00E160R2P8), contains a path traversal flaw. This vulnerability arises from the system's failure to adequately validate certain pathname inputs. An attacker exploiting this vulnerability could gain unauthorized access to sensitive files, leading to potential information disclosure.
Affected Version(s)
HUAWEI P30 Pro Versions earlier than 10.1.0.160(C00E160R2P8)
References
CVSS V3.1
Score:
4.6
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Physical
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved