CVE-2020-1831

CWE-863Incorrect Authorization3 documents3 sources
Severity
2.4LOW
EPSS
0.0%
top 93.33%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Huawei Mate 20 FirmwareHuawei Huawei Mate 20
Timeline
PublishedMay 29
Latest updateMay 24

Description

HUAWEI Mate 20 smartphones with versions earlier than 10.0.0.195(SP31C00E74R3P8) have an improper authorization vulnerability. The digital balance function does not sufficiently restrict the using time of certain user, successful exploit could allow the user break the limit of digital balance function after a series of operations with a PC.

CVSS vector

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:NExploitability: 0.9 | Impact: 1.4

Affected Packages2 packages

NVDhuawei/mate_20_firmware< 10.0.0.195\(sp31c00e74r3p8\)
CVEListV5huawei/huawei_mate_20Versions earlier than 10.0.0.195(SP31C00E74R3P8)

🔴Vulnerability Details

2
GHSA
GHSA-9j32-v5x8-3g32: HUAWEI Mate 20 smartphones with versions earlier than 102022-05-24
CVEList
CVE-2020-1831: HUAWEI Mate 20 smartphones with versions earlier than 102020-05-29
CVE-2020-1831 (LOW CVSS 2.4) | HUAWEI Mate 20 smartphones with ver | cvebase.io