CVE-2020-1878
First published: Fri Mar 20 2020(Updated: )
Huawei smartphone OxfordS-AN00A with versions earlier than 10.0.1.152D(C735E152R3P3),versions earlier than 10.0.1.160(C00E160R4P1) have an improper authentication vulnerability. Authentication to target component is improper when device performs an operation. Attackers exploit this vulnerability to obtain some information by loading malicious application, leading to information leak.
Credit: psirt@huawei.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Huawei Oxfords-an00a Firmware | >10.0.1.152d\(c735e152r3p3\)<10.0.1.160\(c00e160r4p1\) | |
| Huawei Oxfords-an00a | ||
| Huawei Oxfords-an00a Firmware | <10.0.1.152d\(c735e152r3p3\) |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-index
- agent/references
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/severity
- agent/last-modified-date
- agent/author
- agent/tags
- agent/first-publish-date
- agent/description
- agent/event
- vendor/huawei
- canonical/huawei oxfords-an00a firmware
- canonical/huawei oxfords-an00a