CVE-2020-1801
Summary
| CVE | CVE-2020-1801 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2020-04-10 15:15:00 UTC |
| Updated | 2021-07-21 11:39:00 UTC |
| Description | There is an improper authentication vulnerability in several smartphones. Certain function interface in the system does not sufficiently validate the caller's identity in certain share scenario, successful exploit could cause information disclosure. Affected product versions include:Mate 30 Pro versions Versions earlier than 10.0.0.205(C00E202R7P2);Mate 30 versions Versions earlier than 10.0.0.205(C00E201R7P2). |
Risk And Classification
Problem Types: CWE-287
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Hardware | Huawei | Mate 30 | - | All | All | All |
| Hardware | Huawei | Mate 30 | - | All | All | All |
| Operating System | Huawei | Mate 30 Firmware | All | All | All | All |
| Operating System | Huawei | Mate 30 Firmware | All | All | All | All |
| Hardware | Huawei | Mate 30 Pro | - | All | All | All |
| Hardware | Huawei | Mate 30 Pro | - | All | All | All |
| Operating System | Huawei | Mate 30 Pro Firmware | All | All | All | All |
| Operating System | Huawei | Mate 30 Pro Firmware | All | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Security Advisory - Improper Authentication Vulnerability in Several Smartphones | MISC | www.huawei.com | Vendor Advisory |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.