CVE-2020-9077
First published: Mon Jul 27 2020(Updated: )
HUAWEI P30 smart phones with versions earlier than 10.1.0.160(C00E160R2P11) have an information exposure vulnerability. The system does not properly authenticate the application that access a specified interface. Attackers can trick users into installing malicious software to exploit this vulnerability and obtain some information about the device. Successful exploit may cause information disclosure.
Credit: psirt@huawei.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Huawei P30 Firmware | <10.1.0.160\(c00e160r2p11\) | |
| HUAWEI P30 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID of this security advisory?
The vulnerability ID of this security advisory is CVE-2020-9077.
What is the title of this security advisory?
The title of this security advisory is "HUAWEI P30 smart phones with versions earlier than 10.1.0.160(C00E160R2P11) have an information exposure vulnerability."
What is the severity level of CVE-2020-9077?
The severity level of CVE-2020-9077 is medium.
How can attackers exploit this vulnerability?
Attackers can exploit this vulnerability by tricking users into installing malicious software.
How can I fix this vulnerability?
To fix this vulnerability, update your HUAWEI P30 smart phone to version 10.1.0.160(C00E160R2P11) or later.
- collector/nvd-index
- agent/references
- agent/severity
- agent/weakness
- agent/author
- agent/type
- agent/event
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/huawei
- canonical/huawei p30 firmware
- canonical/huawei p30