CVE-2020-1807

Published: Apr 27, 2020Modified: Nov 21, 2024

3.5

Vector

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

Exploitability: 0.9 / Impact: 2.5

Source: NVD

Description

HUAWEI Mate 20 smartphones with versions earlier than 10.0.0.188(C00E74R3P8) have an improper authorization vulnerability. The software does not properly restrict certain user's modification of certain configuration file, successful exploit could allow the attacker to bypass app lock after a series of operation in ADB mode.

Affected (1)

Products: Huawei: Mate 20 Firmware

1 product

Mate 20 Firmware

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Huawei Mate 20 Firmware	Before 10.0.0.188\(c00e74r3p8\)

Running on/with	Platform Versions
Huawei Mate 20	All versions

References (2)

https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200422-01-smartphone-en

Source: psirt@huawei.com

Vendor Advisory

https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200422-01-smartphone-en

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.