Vulnerabilities > CVE-2020-9245 - Incorrect Authorization vulnerability in Huawei P30 Firmware and P30 PRO Firmware

047910
CVSS 4.3 - MEDIUM
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
PARTIAL

Summary

HUAWEI P30 versions Versions earlier than 10.1.0.160(C00E160R2P11);HUAWEI P30 Pro versions Versions earlier than 10.1.0.160(C00E160R2P8) have a denial of service vulnerability. Certain system configuration can be modified because of improper authorization. The attacker could trick the user installing and executing a malicious application, successful exploit could cause a denial of service condition of PHONE function.

Vulnerable Configurations

Part Description Count
OS
Huawei
37
Hardware
Huawei
2

Common Weakness Enumeration (CWE)