Vulnerability Description
HUAWEI Mate 20 smart phones with versions earlier than 10.0.0.175(C00E70R3P8) have an insufficient authentication vulnerability. A local attacker with high privilege can execute a specific command to exploit this vulnerability. Successful exploitation may cause information leak and compromise the availability of the smart phones.Affected product versions include: HUAWEI Mate 20 versions Versions earlier than 10.0.0.175(C00E70R3P8)
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Huawei | Mate 20 Firmware | <= 10.0.0.175\(c00e70r3p8\) |
| Huawei | Mate 20 | - |
Related Weaknesses (CWE)
References
- https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-smartpVendor Advisory
- https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-smartpVendor Advisory
FAQ
What is CVE-2020-1840?
CVE-2020-1840 is a vulnerability with a CVSS score of 6.0 (MEDIUM). HUAWEI Mate 20 smart phones with versions earlier than 10.0.0.175(C00E70R3P8) have an insufficient authentication vulnerability. A local attacker with high privilege can execute a specific command to ...
How severe is CVE-2020-1840?
CVE-2020-1840 has been rated MEDIUM with a CVSS base score of 6.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-1840?
Check the references section above for vendor advisories and patch information. Affected products include: Huawei Mate 20 Firmware, Huawei Mate 20.