CVE-2020-1834
First published: Thu Jun 18 2020(Updated: )
HUAWEI P30 and HUAWEI P30 Pro with versions earlier than 10.1.0.135(C00E135R2P11) and versions earlier than 10.1.0.135(C00E135R2P8) have an insufficient integrity check vulnerability. The system does not check certain software package's integrity sufficiently. Successful exploit could allow an attacker to load a crafted software package to the device.
Credit: psirt@huawei.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Huawei P30 Firmware | <10.1.0.135\(c00e135r2p11\) | |
| HUAWEI P30 | ||
| Huawei P30 Pro Firmware | <10.1.0.135\(c00e135r2p8\) | |
| HUAWEI P30 Pro |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this Huawei P30 and P30 Pro vulnerability?
The vulnerability ID is CVE-2020-1834.
What is the severity of CVE-2020-1834?
The severity of CVE-2020-1834 is medium with a score of 4.6.
Which devices are affected by CVE-2020-1834?
HUAWEI P30 and HUAWEI P30 Pro with versions earlier than 10.1.0.135(C00E135R2P11) and versions earlier than 10.1.0.135(C00E135R2P8) are affected by CVE-2020-1834.
What is the impact of the CVE-2020-1834 vulnerability?
Successful exploit of CVE-2020-1834 could allow an attacker to bypass certain software package integrity checks.
How can I fix CVE-2020-1834 on my HUAWEI P30 or P30 Pro?
To fix CVE-2020-1834, update your device to version 10.1.0.135(C00E135R2P11) or later for HUAWEI P30, and version 10.1.0.135(C00E135R2P8) or later for HUAWEI P30 Pro.