Huawei Mate 20 vulnerabilities

10 known vulnerabilities affecting huawei/huawei_mate_20.

Total CVEs
10
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM5LOW4

Vulnerabilities

Page 1 of 1
CVE-2020-9082MEDIUMCVSS 4.6vVersions earlier than 10.1.0.160(C00)2024-12-27
CVE-2020-9082 [LOW] CWE-200 CVE-2020-9082: There is an information disclosure vulnerability in several smartphones. The system has a logic judg There is an information disclosure vulnerability in several smartphones. The system has a logic judging error under certain scenario, the attacker should gain the permit to execute commands in ADB mode and then do a series of operation on the phone. Successful exploit could allow the attacker to gain certain information from certain apps locked by Apploc
cvelistv5nvd
CVE-2020-9081MEDIUMCVSS 6.8vVersions earlier than 10.1.0.160(C00E160R3P8)vVersions earlier than 10.1.0.160(C01E160R2P8)2024-12-27
CVE-2020-9081 [LOW] CWE-285 CVE-2020-9081: There is an improper authorization vulnerability in some Huawei smartphones. An attacker could perfo There is an improper authorization vulnerability in some Huawei smartphones. An attacker could perform a series of operation in specific mode to exploit this vulnerability. Successful exploit could allow the attacker to bypass app lock. (Vulnerability ID: HWPSIRT-2019-12144) This vulnerability has been assigned a Common Vulnerabilities and Exposures (C
cvelistv5nvd
CVE-2020-9247HIGHCVSS 7.8≥ unspecified, < 10.1.0.160(C00E160R3P8)2020-12-07
CVE-2020-9247 [HIGH] CWE-120 CVE-2020-9247: There is a buffer overflow vulnerability in several Huawei products. The system does not sufficientl There is a buffer overflow vulnerability in several Huawei products. The system does not sufficiently validate certain configuration parameter which is passed from user that would cause buffer overflow. The attacker should trick the user into installing and running a malicious application with a high privilege, successful exploit may cause code executio
cvelistv5nvd
CVE-2020-1831LOWCVSS 2.4vVersions earlier than 10.0.0.195(SP31C00E74R3P8)2020-05-29
CVE-2020-1831 [LOW] CWE-863 CVE-2020-1831: HUAWEI Mate 20 smartphones with versions earlier than 10.0.0.195(SP31C00E74R3P8) have an improper au HUAWEI Mate 20 smartphones with versions earlier than 10.0.0.195(SP31C00E74R3P8) have an improper authorization vulnerability. The digital balance function does not sufficiently restrict the using time of certain user, successful exploit could allow the user break the limit of digital balance function after a series of operations with a PC.
cvelistv5nvd
CVE-2020-1797LOWCVSS 2.4vVersions earlier than 10.0.0.185(C00E74R3P8)2020-05-29
CVE-2020-1797 [LOW] CVE-2020-1797: HUAWEI Mate 20 smartphones with versions earlier than 10.0.0.185(C00E74R3P8) have an improper author HUAWEI Mate 20 smartphones with versions earlier than 10.0.0.185(C00E74R3P8) have an improper authorization vulnerability. The system does not properly restrict certain operation in ADB mode, successful exploit could allow certain user break the limit of digital balance function.
cvelistv5nvd
CVE-2019-5303MEDIUMCVSS 5.3vVersions earlier than 9.1.0.131(C00E131R3P1)2020-04-27
CVE-2019-5303 [MEDIUM] CWE-20 CVE-2019-5303: There are two denial of service vulnerabilities on some Huawei smartphones. An attacker may send spe There are two denial of service vulnerabilities on some Huawei smartphones. An attacker may send specially crafted TD-SCDMA messages from a rogue base station to the affected devices. Due to insufficient input validation of two values when parsing the messages, successful exploit may cause device abnormal. This is 2 out of 2 vulnerabilities. Different
cvelistv5nvd
CVE-2019-5302MEDIUMCVSS 5.3vVersions earlier than 9.1.0.131(C00E131R3P1)2020-04-27
CVE-2019-5302 [MEDIUM] CWE-20 CVE-2019-5302: There are two denial of service vulnerabilities on some Huawei smartphones. An attacker may send spe There are two denial of service vulnerabilities on some Huawei smartphones. An attacker may send specially crafted TD-SCDMA messages from a rogue base station to the affected devices. Due to insufficient input validation of two values when parsing the messages, successful exploit may cause device abnormal. This is 1 out of 2 vulnerabilities. Different
cvelistv5nvd
CVE-2020-1807LOWCVSS 3.5vVersions earlier than 10.0.0.188(C00E74R3P8)2020-04-27
CVE-2020-1807 [LOW] CVE-2020-1807: HUAWEI Mate 20 smartphones with versions earlier than 10.0.0.188(C00E74R3P8) have an improper author HUAWEI Mate 20 smartphones with versions earlier than 10.0.0.188(C00E74R3P8) have an improper authorization vulnerability. The software does not properly restrict certain user's modification of certain configuration file, successful exploit could allow the attacker to bypass app lock after a series of operation in ADB mode.
cvelistv5nvd
CVE-2020-1791LOWCVSS 2.4vVersions earlier than 10.0.0.185(C00E74R3P8)2020-02-18
CVE-2020-1791 [LOW] CVE-2020-1791: HUAWEI Mate 20 smartphones with versions earlier than 10.0.0.185(C00E74R3P8) have an improper author HUAWEI Mate 20 smartphones with versions earlier than 10.0.0.185(C00E74R3P8) have an improper authorization vulnerability. The system has a logic judging error under certain scenario, successful exploit could allow the attacker to switch to third desktop after a series of operation in ADB mode.
cvelistv5nvd
CVE-2020-1787MEDIUMCVSS 6.6vVersions earlier than 9.1.0.139(C00E133R3P1)2020-01-09
CVE-2020-1787 [MEDIUM] CWE-287 CVE-2020-1787: HUAWEI Mate 20 smartphones versions earlier than 9.1.0.139(C00E133R3P1) have an improper authenticat HUAWEI Mate 20 smartphones versions earlier than 9.1.0.139(C00E133R3P1) have an improper authentication vulnerability. The system has a logic error under certain scenario, successful exploit could allow the attacker who gains the privilege of guest user to access to the host user's desktop in an instant, without unlocking the screen lock of the host u
cvelistv5nvd