There is an improper authentication vulnerability in several smartphones. The applock does not perform a sufficient authentication in certain scenarios, successful exploit could allow the attacker to gain certain data of the application which is locked. Affected product versions include:HUAWEI Mate 20 versions Versions earlier than 10.0.0.188(C00E74R3P8);HUAWEI Mate 30 Pro versions Versions earlier than 10.0.0.203(C00E202R7P2).
References
Link | Resource |
---|---|
https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200318-02-smartphone-en | Vendor Advisory |
Information
Published : 2020-03-20 08:15
Updated : 2020-03-24 13:46
NVD link : CVE-2020-1794
Mitre link : CVE-2020-1794
JSON object : View
CWE
CWE-287
Improper Authentication
Products Affected
huawei
- mate_30_pro
- mate_30_pro_firmware
- mate_20
- mate_20_firmware