CVE-2020-1803

Huawei smartphones Honor V20 with versions earlier than 10.0.0.179(C636E3R4P3),versions earlier than 10.0.0.180(C185E3R3P3),versions earlier than 10.0.0.180(C432E10R3P4) have an information disclosure vulnerability. The device does not sufficiently validate the identity of smart wearable device in certain specific scenario, the attacker need to gain certain information in the victim's smartphone to launch the attack, successful exploit could cause information disclosure.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:huawei:honor_v20_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:huawei:honor_v20:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:huawei:honor_v20_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:huawei:honor_v20:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:huawei:honor_v20_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:huawei:honor_v20:-:*:*:*:*:*:*:*

History

21 Nov 2024, 05:11

Type Values Removed Values Added
References () http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200415-02-smartphone-en - Vendor Advisory () http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200415-02-smartphone-en - Vendor Advisory
References () https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200415-02-smartphone-en - Vendor Advisory () https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200415-02-smartphone-en - Vendor Advisory

Information

Published : 2020-04-20 20:15

Updated : 2024-11-21 05:11


NVD link : CVE-2020-1803

Mitre link : CVE-2020-1803

CVE.ORG link : CVE-2020-1803


JSON object : View

Products Affected

huawei

  • honor_v20
  • honor_v20_firmware
CWE
CWE-287

Improper Authentication