Improper Authentication Vulnerability in HUAWEI Mate and Honor Smartphone Models
CVE-2020-9244
Key Information:
- Vendor
- Huawei
- Vendor
- CVE Published:
- 11 August 2020
Summary
An improper authentication vulnerability exists in certain HUAWEI and Honor smartphone models, allowing attackers to exploit the system's failure to properly sign certain encrypted files. If an attacker gains access to the key used for file encryption, they could potentially manipulate critical files, leading to unauthorized access and data integrity issues.
Affected Version(s)
HUAWEI Mate 20;HUAWEI Mate 20 Pro;HUAWEI Mate 20 X;HUAWEI P30;HUAWEI P30 Pro;HUAWEI Mate 20 RS;HonorMagic2;Honor20;Honor20 PRO;HonorMagic2;HonorV20 Versions earlier than 10.1.0.160(C00E160R3P8)
HUAWEI Mate 20;HUAWEI Mate 20 Pro;HUAWEI Mate 20 X;HUAWEI P30;HUAWEI P30 Pro;HUAWEI Mate 20 RS;HonorMagic2;Honor20;Honor20 PRO;HonorMagic2;HonorV20 Versions earlier than 10.1.0.270(C431E7R1P5),Versions earlier than 10.1.0.270(C635E3R1P5),Versions earlier than 10.1.0.273(C636E7R2P4)
HUAWEI Mate 20;HUAWEI Mate 20 Pro;HUAWEI Mate 20 X;HUAWEI P30;HUAWEI P30 Pro;HUAWEI Mate 20 RS;HonorMagic2;Honor20;Honor20 PRO;HonorMagic2;HonorV20 Versions earlier than 10.1.0.160(C00E160R2P8)
References
CVSS V3.1
Timeline
Vulnerability published
Vulnerability Reserved