First published: Fri Jul 17 2020(Updated: )
Huawei Mate 30 Pro smartphones with versions earlier than 10.1.0.150(C00E136R5P3) have an improper authorization vulnerability. The system does not properly restrict the use of system service by applications, the attacker should trick the user into installing a malicious application, successful exploit could cause a denial of audio service.
Credit: psirt@huawei.com
Affected Software | Affected Version | How to fix |
---|---|---|
Huawei Mate 30 Pro Firmware | <10.1.0.150\(c00e136r5p3\) | |
Huawei Mate 30 Pro |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2020-9256 is an improper authorization vulnerability found in Huawei Mate 30 Pro smartphones with versions earlier than 10.1.0.150(C00E136R5P3).
An attacker can exploit CVE-2020-9256 by tricking the user into installing a malicious application that takes advantage of the improper authorization vulnerability.
CVE-2020-9256 has a severity rating of medium, with a score of 6.5.
Huawei Mate 30 Pro smartphones with versions earlier than 10.1.0.150(C00E136R5P3) are affected by CVE-2020-9256.
To fix CVE-2020-9256, users should update their Huawei Mate 30 Pro smartphones to version 10.1.0.150(C00E136R5P3) or later.