CVE-2020-9259
First published: Fri Jul 17 2020(Updated: )
Huawei Honor V30 smartphones with versions earlier than 10.1.0.212(C00E210R5P1) have an improper authentication vulnerability. The system does not sufficiently validate certain parameter passed from the bottom level, the attacker should trick the user into installing a malicious application and control the bottom level, successful exploit could cause information disclosure.
Credit: psirt@huawei.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Huawei Honor V30 Firmware | <10.1.0.212\(c00e210r5p1\) | |
| Huawei Honor V30 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this Huawei Honor V30 vulnerability?
The vulnerability ID for this Huawei Honor V30 vulnerability is CVE-2020-9259.
What is the severity of CVE-2020-9259 vulnerability?
The severity of CVE-2020-9259 vulnerability is medium, with a severity value of 6.5.
How does the vulnerability in Huawei Honor V30 smartphones manifest?
The vulnerability in Huawei Honor V30 smartphones manifests as an improper authentication vulnerability.
How can an attacker exploit CVE-2020-9259 vulnerability?
To exploit CVE-2020-9259 vulnerability, an attacker needs to trick the user into installing a malicious application.
How can I fix the CVE-2020-9259 vulnerability on my Huawei Honor V30 smartphone?
To fix the CVE-2020-9259 vulnerability on your Huawei Honor V30 smartphone, update to versions 10.1.0.212(C00E210R5P1) or later.
- collector/nvd-index
- agent/type
- agent/tags
- agent/event
- agent/weakness
- agent/severity
- agent/references
- agent/author
- agent/description
- agent/softwarecombine
- agent/first-publish-date
- agent/last-modified-date
- collector/mitre-cve
- source/MITRE
- vendor/huawei
- canonical/huawei honor v30 firmware
- canonical/huawei honor v30