HUAWEI P30 smartphone versions 10.1.0.135 Exposure of Sensitive Information to an Unauthorized Actor Vulnerability

Summary

HUAWEI P30 smartphone with versions earlier than 10.1.0.135 suffers from exposure of sensitive information to an unauthorized actor vulnerability

Credit:

The information has been provided by Vendor

The original article can be found at:https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200708-02-smartphone-en


Details

HUAWEI P30 smartphone with versions earlier than 10.1.0.135(C00E135R2P11) have an improper input verification vulnerability. An attribution in a module is not set correctly and some verification is lacked. Attackers with local access can exploit this vulnerability by injecting malicious fragment. This may lead to user information leak.

 

Vulnerable Systems:

HUAWEI P30 smartphone versions 10.1.0.135

 

CVE Information:

CVE-2020-9258

 

Disclosure Timeline:
Published Date:7/10/2020

Categories: FeaturedNews