CVSS: 4.3EPSS: 0%CPEs: 2EXPL: 0CVE-2020-9077
https://notcve.org/view.php?id=CVE-2020-9077
27 Jul 2020 — HUAWEI P30 smart phones with versions earlier than 10.1.0.160(C00E160R2P11) have an information exposure vulnerability. The system does not properly authenticate the application that access a specified interface. Attackers can trick users into installing malicious software to exploit this vulnerability and obtain some information about the device. Successful exploit may cause information disclosure. Los teléfonos inteligentes HUAWEI P30 con versiones anteriores a 10.1.0.160(C00E160R2P11), presentan una vuln... • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200722-03-smartphone-en • CWE-287: Improper Authentication •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2020-9258
https://notcve.org/view.php?id=CVE-2020-9258
10 Jul 2020 — HUAWEI P30 smartphone with versions earlier than 10.1.0.135(C00E135R2P11) have an improper input verification vulnerability. An attribution in a module is not set correctly and some verification is lacked. Attackers with local access can exploit this vulnerability by injecting malicious fragment. This may lead to user information leak. El teléfono inteligente HUAWEI P30 con versiones anteriores a 10.1.0.135(C00E135R2P11), presenta una vulnerabilidad de verificación de entrada inapropiada. • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200708-02-smartphone-en • CWE-20: Improper Input Validation •
CVSS: 6.5EPSS: 0%CPEs: 4EXPL: 0CVE-2020-9260
https://notcve.org/view.php?id=CVE-2020-9260
10 Jul 2020 — HUAWEI P30 and HUAWEI P30 Pro smartphones with versions earlier than 10.1.0.123(C432E22R2P5) and versions earlier than 10.1.0.160(C00E160R2P8) have an information disclosure vulnerability. Certain WI-FI function's default configuration in the system seems insecure, an attacker should craft a WI-FI hotspot to launch the attack. Successful exploit could cause information disclosure. Los teléfonos inteligentes HUAWEI P30 y HUAWEI P30 Pro con versiones anteriores a 10.1.0.123(C432E22R2P5) y versiones anteriores... • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200708-01-smartphone-en •
CVSS: 5.3EPSS: 0%CPEs: 4EXPL: 0CVE-2020-1836
https://notcve.org/view.php?id=CVE-2020-1836
06 Jul 2020 — HUAWEI P30 with versions earlier than 10.1.0.160(C00E160R2P11) and HUAWEI P30 Pro with versions earlier than 10.1.0.160(C00E160R2P8) have an information disclosure vulnerability. Certain function's default configuration in the system seems insecure, an attacker should craft a WI-FI hotspot to launch the attack. Successful exploit could cause information disclosure. HUAWEI P30 con versiones anteriores a 10.1.0.160(C00E160R2P11) y HUAWEI P30 Pro con versiones anteriores a 10.1.0.160(C00E160R2P8), presenta una... • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200624-01-smartphone-en •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2020-9226
https://notcve.org/view.php?id=CVE-2020-9226
06 Jul 2020 — HUAWEI P30 with versions earlier than 10.1.0.135(C00E135R2P11) have an improper signature verification vulnerability. The system does not improper check signature of specific software package, an attacker may exploit this vulnerability to load a crafted software package to the device. HUAWEI P30 con versiones anteriores a 10.1.0.135(C00E135R2P11), presenta una vulnerabilidad de comprobación de firma inapropiada. El sistema no comprueba apropiadamente una firma de un paquete de software específico, un atacan... • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200701-02-smartphone-en • CWE-347: Improper Verification of Cryptographic Signature •
CVSS: 4.6EPSS: 0%CPEs: 4EXPL: 0CVE-2020-1834
https://notcve.org/view.php?id=CVE-2020-1834
18 Jun 2020 — HUAWEI P30 and HUAWEI P30 Pro with versions earlier than 10.1.0.135(C00E135R2P11) and versions earlier than 10.1.0.135(C00E135R2P8) have an insufficient integrity check vulnerability. The system does not check certain software package's integrity sufficiently. Successful exploit could allow an attacker to load a crafted software package to the device. HUAWEI P30 y HUAWEI P30 Pro con versiones anteriores a 10.1.0.135(C00E135R2P11) y versiones anteriores a 10.1.0.135(C00E135R2P8), presentan una vulnerabilidad... • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200617-01-smartphone-en • CWE-354: Improper Validation of Integrity Check Value •
CVSS: 6.8EPSS: 0%CPEs: 8EXPL: 0CVE-2020-9076
https://notcve.org/view.php?id=CVE-2020-9076
15 Jun 2020 — HUAWEI P30;HUAWEI P30 Pro;Tony-AL00B smartphones with versions earlier than 10.1.0.135(C00E135R2P11); versions earlier than 10.1.0.135(C00E135R2P8), versions earlier than 10.1.0.135 have an improper authentication vulnerability. Due to the identity of the message sender not being properly verified, an attacker can exploit this vulnerability through man-in-the-middle attack to induce user to access malicious URL. Los teléfonos inteligentes HUAWEI P30; HUAWEI P30 Pro; Tony-AL00B con versiones anteriores a 10.... • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200610-02-phone-en • CWE-287: Improper Authentication •
CVSS: 6.8EPSS: 0%CPEs: 2EXPL: 0CVE-2020-1813
https://notcve.org/view.php?id=CVE-2020-1813
15 Jun 2020 — HUAWEI P30 smart phone with versions earlier than 10.1.0.135(C00E135R2P11) have an improper authentication vulnerability. Due to improper authentication of specific interface, in specific scenario attackers could access specific interface without authentication. Successful exploit could allow the attacker to perform unauthorized operations. El teléfono inteligente HUAWEI P30 con versiones anteriores a 10.1.0.135(C00E135R2P11), presenta una vulnerabilidad de autenticación inapropiada. Debido a una autenticac... • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200610-04-smartphone-en • CWE-306: Missing Authentication for Critical Function •
CVSS: 4.6EPSS: 0%CPEs: 2EXPL: 0CVE-2020-1798
https://notcve.org/view.php?id=CVE-2020-1798
29 May 2020 — HUAWEI P30 smartphones with versions earlier than 10.1.0.135(C00E135R2P11) have an improper authentication vulnerability. A logic error occurs when handling NFC work, an attacker should establish a NFC connection to the target phone, and then do a series of operations on the target phone. Successful exploit could allow a guest user do certain operation which is beyond the guest user's privilege. Los teléfonos inteligentes HUAWEI P30 con versiones anteriores a 10.1.0.135(C00E135R2P11), presentan una vulnerab... • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200527-02-smartphone-en • CWE-287: Improper Authentication •
CVSS: 5.5EPSS: 0%CPEs: 8EXPL: 0CVE-2019-5227
https://notcve.org/view.php?id=CVE-2019-5227
29 Nov 2019 — P30, P30 Pro, Mate 20 smartphones with software of versions earlier than ELLE-AL00B 9.1.0.193(C00E190R2P1), versions earlier than VOGUE-AL00A 9.1.0.193(C00E190R2P1), versions earlier than Hima-AL00B 9.1.0.135(C00E133R2P1) and HiSuite with versions earlier than HiSuite 9.1.0.305 have a version downgrade vulnerability. The device and HiSuite software do not validate the upgrade package sufficiently, so that the system of smartphone can be downgraded to an older version. Los teléfonos inteligentes P30, P30 Pro... • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190904-01-smartphone-en • CWE-346: Origin Validation Error •