Vulnerability Description
HUAWEI P30 with versions earlier than 10.1.0.160(C00E160R2P11) and HUAWEI P30 Pro with versions earlier than 10.1.0.160(C00E160R2P8) have an information disclosure vulnerability. Certain function's default configuration in the system seems insecure, an attacker should craft a WI-FI hotspot to launch the attack. Successful exploit could cause information disclosure.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Huawei | P30 Firmware | < 10.1.0.160\(c00e160r2p11\) |
| Huawei | P30 | - |
| Huawei | P30 Pro Firmware | < 10.1.0.160\(c00e160r2p8\) |
| Huawei | P30 Pro | - |
References
- https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200624-01-smartpVendor Advisory
- https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200624-01-smartpVendor Advisory
FAQ
What is CVE-2020-1836?
CVE-2020-1836 is a vulnerability with a CVSS score of 5.3 (MEDIUM). HUAWEI P30 with versions earlier than 10.1.0.160(C00E160R2P11) and HUAWEI P30 Pro with versions earlier than 10.1.0.160(C00E160R2P8) have an information disclosure vulnerability. Certain function's de...
How severe is CVE-2020-1836?
CVE-2020-1836 has been rated MEDIUM with a CVSS base score of 5.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-1836?
Check the references section above for vendor advisories and patch information. Affected products include: Huawei P30 Firmware, Huawei P30, Huawei P30 Pro Firmware, Huawei P30 Pro.