HUAWEI Mate 30 Pro versions 10.1.0.150 Improper Authentication Vulnerability

Summary

HUAWEI Mate 30 Pro with versions earlier than 10.1.0.150(C00E136R5P3) have is an improper authentication vulnerability.

Credit:

The information has been provided by Wish Wu

The original article can be found at:https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200701-03-smartphone-en


Details

The device does not sufficiently validate certain credential of user’s face, an attacker could craft the credential of the user, successful exploit could allow the attacker to pass the authentication with the crafted credential.

 

Vulnerable Systems:

HUAWEI Mate 30 Pro versions 10.1.0.150

 

CVE Information:

CVE-2020-1838

 

Disclosure Timeline:
Published Date:7/6/2020

Categories: FeaturedNews