CVE-2020-9226
First published: Mon Jul 06 2020(Updated: )
HUAWEI P30 with versions earlier than 10.1.0.135(C00E135R2P11) have an improper signature verification vulnerability. The system does not improper check signature of specific software package, an attacker may exploit this vulnerability to load a crafted software package to the device.
Credit: psirt@huawei.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Huawei P30 Firmware | <10.1.0.135\(c00e135r2p11\) | |
| HUAWEI P30 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID of this issue?
The vulnerability ID is CVE-2020-9226.
What is the severity level of CVE-2020-9226?
The severity level of CVE-2020-9226 is medium with a score of 5.5.
What is the affected software?
HUAWEI P30 with versions earlier than 10.1.0.135(C00E135R2P11) is affected.
How can an attacker exploit this vulnerability?
An attacker may exploit this vulnerability by loading a crafted software package to the device.
Is there a fix available for CVE-2020-9226?
To fix CVE-2020-9226, users should update their HUAWEI P30 to version 10.1.0.135(C00E135R2P11) or later.
- collector/nvd-index
- agent/severity
- agent/author
- agent/references
- agent/weakness
- agent/type
- agent/event
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/huawei
- canonical/huawei p30 firmware
- canonical/huawei p30