Vulnerability Description
Huawei Honor V30 smartphones with versions earlier than 10.1.0.212(C00E210R5P1) have an improper authentication vulnerability. The system does not sufficiently validate certain parameter passed from the bottom level, the attacker should trick the user into installing a malicious application and control the bottom level, successful exploit could cause information disclosure.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Huawei | Honor V30 Firmware | < 10.1.0.212\(c00e210r5p1\) |
| Huawei | Honor V30 | - |
Related Weaknesses (CWE)
References
- https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200715-02-smartpVendor Advisory
- https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200715-02-smartpVendor Advisory
FAQ
What is CVE-2020-9259?
CVE-2020-9259 is a vulnerability with a CVSS score of 6.5 (MEDIUM). Huawei Honor V30 smartphones with versions earlier than 10.1.0.212(C00E210R5P1) have an improper authentication vulnerability. The system does not sufficiently validate certain parameter passed from t...
How severe is CVE-2020-9259?
CVE-2020-9259 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-9259?
Check the references section above for vendor advisories and patch information. Affected products include: Huawei Honor V30 Firmware, Huawei Honor V30.