Vulnerability Description
HUAWEI P30 and HUAWEI P30 Pro smartphones with versions earlier than 10.1.0.123(C432E22R2P5) and versions earlier than 10.1.0.160(C00E160R2P8) have an information disclosure vulnerability. Certain WI-FI function's default configuration in the system seems insecure, an attacker should craft a WI-FI hotspot to launch the attack. Successful exploit could cause information disclosure.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Huawei | P30 Firmware | < 10.1.0.123\(c432e22r2p5\) |
| Huawei | P30 | - |
| Huawei | P30 Pro Firmware | < 10.1.0.160\(c00e160r2p8\) |
| Huawei | P30 Pro | - |
References
- https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200708-01-smartpVendor Advisory
- https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200708-01-smartpVendor Advisory
FAQ
What is CVE-2020-9260?
CVE-2020-9260 is a vulnerability with a CVSS score of 6.5 (MEDIUM). HUAWEI P30 and HUAWEI P30 Pro smartphones with versions earlier than 10.1.0.123(C432E22R2P5) and versions earlier than 10.1.0.160(C00E160R2P8) have an information disclosure vulnerability. Certain WI-...
How severe is CVE-2020-9260?
CVE-2020-9260 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-9260?
Check the references section above for vendor advisories and patch information. Affected products include: Huawei P30 Firmware, Huawei P30, Huawei P30 Pro Firmware, Huawei P30 Pro.