CVE-2020-1803
Summary
| CVE | CVE-2020-1803 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2020-04-20 20:15:00 UTC |
| Updated | 2021-07-21 11:39:00 UTC |
| Description | Huawei smartphones Honor V20 with versions earlier than 10.0.0.179(C636E3R4P3),versions earlier than 10.0.0.180(C185E3R3P3),versions earlier than 10.0.0.180(C432E10R3P4) have an information disclosure vulnerability. The device does not sufficiently validate the identity of smart wearable device in certain specific scenario, the attacker need to gain certain information in the victim's smartphone to launch the attack, successful exploit could cause information disclosure. |
Risk And Classification
Problem Types: CWE-287
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Hardware | Huawei | Honor V20 | - | All | All | All |
| Hardware | Huawei | Honor V20 | - | All | All | All |
| Operating System | Huawei | Honor V20 Firmware | All | All | All | All |
| Operating System | Huawei | Honor V20 Firmware | All | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Security Advisory - Information Disclosure Vulnerability in Several Smartphones | CONFIRM | www.huawei.com | Vendor Advisory |
| Security Advisory - Information Disclosure Vulnerability in Several Smartphones | CONFIRM | www.huawei.com | Vendor Advisory |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.