CVSS: 4.3EPSS: 0%CPEs: 2EXPL: 0CVE-2020-9077
https://notcve.org/view.php?id=CVE-2020-9077
27 Jul 2020 — HUAWEI P30 smart phones with versions earlier than 10.1.0.160(C00E160R2P11) have an information exposure vulnerability. The system does not properly authenticate the application that access a specified interface. Attackers can trick users into installing malicious software to exploit this vulnerability and obtain some information about the device. Successful exploit may cause information disclosure. Los teléfonos inteligentes HUAWEI P30 con versiones anteriores a 10.1.0.160(C00E160R2P11), presentan una vuln... • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200722-03-smartphone-en • CWE-287: Improper Authentication •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2020-9258
https://notcve.org/view.php?id=CVE-2020-9258
10 Jul 2020 — HUAWEI P30 smartphone with versions earlier than 10.1.0.135(C00E135R2P11) have an improper input verification vulnerability. An attribution in a module is not set correctly and some verification is lacked. Attackers with local access can exploit this vulnerability by injecting malicious fragment. This may lead to user information leak. El teléfono inteligente HUAWEI P30 con versiones anteriores a 10.1.0.135(C00E135R2P11), presenta una vulnerabilidad de verificación de entrada inapropiada. • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200708-02-smartphone-en • CWE-20: Improper Input Validation •
CVSS: 6.5EPSS: 0%CPEs: 4EXPL: 0CVE-2020-9260
https://notcve.org/view.php?id=CVE-2020-9260
10 Jul 2020 — HUAWEI P30 and HUAWEI P30 Pro smartphones with versions earlier than 10.1.0.123(C432E22R2P5) and versions earlier than 10.1.0.160(C00E160R2P8) have an information disclosure vulnerability. Certain WI-FI function's default configuration in the system seems insecure, an attacker should craft a WI-FI hotspot to launch the attack. Successful exploit could cause information disclosure. Los teléfonos inteligentes HUAWEI P30 y HUAWEI P30 Pro con versiones anteriores a 10.1.0.123(C432E22R2P5) y versiones anteriores... • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200708-01-smartphone-en •
CVSS: 5.3EPSS: 0%CPEs: 4EXPL: 0CVE-2020-1836
https://notcve.org/view.php?id=CVE-2020-1836
06 Jul 2020 — HUAWEI P30 with versions earlier than 10.1.0.160(C00E160R2P11) and HUAWEI P30 Pro with versions earlier than 10.1.0.160(C00E160R2P8) have an information disclosure vulnerability. Certain function's default configuration in the system seems insecure, an attacker should craft a WI-FI hotspot to launch the attack. Successful exploit could cause information disclosure. HUAWEI P30 con versiones anteriores a 10.1.0.160(C00E160R2P11) y HUAWEI P30 Pro con versiones anteriores a 10.1.0.160(C00E160R2P8), presenta una... • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200624-01-smartphone-en •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2020-9226
https://notcve.org/view.php?id=CVE-2020-9226
06 Jul 2020 — HUAWEI P30 with versions earlier than 10.1.0.135(C00E135R2P11) have an improper signature verification vulnerability. The system does not improper check signature of specific software package, an attacker may exploit this vulnerability to load a crafted software package to the device. HUAWEI P30 con versiones anteriores a 10.1.0.135(C00E135R2P11), presenta una vulnerabilidad de comprobación de firma inapropiada. El sistema no comprueba apropiadamente una firma de un paquete de software específico, un atacan... • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200701-02-smartphone-en • CWE-347: Improper Verification of Cryptographic Signature •
CVSS: 4.6EPSS: 0%CPEs: 4EXPL: 0CVE-2020-1834
https://notcve.org/view.php?id=CVE-2020-1834
18 Jun 2020 — HUAWEI P30 and HUAWEI P30 Pro with versions earlier than 10.1.0.135(C00E135R2P11) and versions earlier than 10.1.0.135(C00E135R2P8) have an insufficient integrity check vulnerability. The system does not check certain software package's integrity sufficiently. Successful exploit could allow an attacker to load a crafted software package to the device. HUAWEI P30 y HUAWEI P30 Pro con versiones anteriores a 10.1.0.135(C00E135R2P11) y versiones anteriores a 10.1.0.135(C00E135R2P8), presentan una vulnerabilidad... • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200617-01-smartphone-en • CWE-354: Improper Validation of Integrity Check Value •
CVSS: 6.8EPSS: 0%CPEs: 8EXPL: 0CVE-2020-9076
https://notcve.org/view.php?id=CVE-2020-9076
15 Jun 2020 — HUAWEI P30;HUAWEI P30 Pro;Tony-AL00B smartphones with versions earlier than 10.1.0.135(C00E135R2P11); versions earlier than 10.1.0.135(C00E135R2P8), versions earlier than 10.1.0.135 have an improper authentication vulnerability. Due to the identity of the message sender not being properly verified, an attacker can exploit this vulnerability through man-in-the-middle attack to induce user to access malicious URL. Los teléfonos inteligentes HUAWEI P30; HUAWEI P30 Pro; Tony-AL00B con versiones anteriores a 10.... • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200610-02-phone-en • CWE-287: Improper Authentication •
CVSS: 6.8EPSS: 0%CPEs: 2EXPL: 0CVE-2020-1813
https://notcve.org/view.php?id=CVE-2020-1813
15 Jun 2020 — HUAWEI P30 smart phone with versions earlier than 10.1.0.135(C00E135R2P11) have an improper authentication vulnerability. Due to improper authentication of specific interface, in specific scenario attackers could access specific interface without authentication. Successful exploit could allow the attacker to perform unauthorized operations. El teléfono inteligente HUAWEI P30 con versiones anteriores a 10.1.0.135(C00E135R2P11), presenta una vulnerabilidad de autenticación inapropiada. Debido a una autenticac... • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200610-04-smartphone-en • CWE-306: Missing Authentication for Critical Function •
CVSS: 4.6EPSS: 0%CPEs: 2EXPL: 0CVE-2020-1798
https://notcve.org/view.php?id=CVE-2020-1798
29 May 2020 — HUAWEI P30 smartphones with versions earlier than 10.1.0.135(C00E135R2P11) have an improper authentication vulnerability. A logic error occurs when handling NFC work, an attacker should establish a NFC connection to the target phone, and then do a series of operations on the target phone. Successful exploit could allow a guest user do certain operation which is beyond the guest user's privilege. Los teléfonos inteligentes HUAWEI P30 con versiones anteriores a 10.1.0.135(C00E135R2P11), presentan una vulnerab... • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200527-02-smartphone-en • CWE-287: Improper Authentication •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2020-1800
https://notcve.org/view.php?id=CVE-2020-1800
26 Mar 2020 — HUAWEI smartphones P30 with versions earlier than 10.0.0.185(C00E85R1P11) have an improper access control vulnerability. The software incorrectly restricts access to a function interface from an unauthorized actor, the attacker tricks the user into installing a crafted application, successful exploit could allow the attacker do certain unauthenticated operations. Los teléfonos inteligentes HUAWEI P30 con versiones anteriores a 10.0.0.185(C00E85R1P11), presentan una vulnerabilidad de control de acceso inapro... • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200325-02-smartphone-en •