CVSS: 4.3EPSS: 0%CPEs: 2EXPL: 0CVE-2020-9077
https://notcve.org/view.php?id=CVE-2020-9077
HUAWEI P30 smart phones with versions earlier than 10.1.0.160(C00E160R2P11) have an information exposure vulnerability. The system does not properly authenticate the application that access a specified interface. Attackers can trick users into installing malicious software to exploit this vulnerability and obtain some information about the device. Successful exploit may cause information disclosure. Los teléfonos inteligentes HUAWEI P30 con versiones anteriores a 10.1.0.160(C00E160R2P11), presentan una vulnerabilidad de exposición de información. • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200722-03-smartphone-en • CWE-287: Improper Authentication •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2020-9258
https://notcve.org/view.php?id=CVE-2020-9258
HUAWEI P30 smartphone with versions earlier than 10.1.0.135(C00E135R2P11) have an improper input verification vulnerability. An attribution in a module is not set correctly and some verification is lacked. Attackers with local access can exploit this vulnerability by injecting malicious fragment. This may lead to user information leak. El teléfono inteligente HUAWEI P30 con versiones anteriores a 10.1.0.135(C00E135R2P11), presenta una vulnerabilidad de verificación de entrada inapropiada. • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200708-02-smartphone-en • CWE-20: Improper Input Validation •
CVSS: 6.5EPSS: 0%CPEs: 4EXPL: 0CVE-2020-9260
https://notcve.org/view.php?id=CVE-2020-9260
HUAWEI P30 and HUAWEI P30 Pro smartphones with versions earlier than 10.1.0.123(C432E22R2P5) and versions earlier than 10.1.0.160(C00E160R2P8) have an information disclosure vulnerability. Certain WI-FI function's default configuration in the system seems insecure, an attacker should craft a WI-FI hotspot to launch the attack. Successful exploit could cause information disclosure. Los teléfonos inteligentes HUAWEI P30 y HUAWEI P30 Pro con versiones anteriores a 10.1.0.123(C432E22R2P5) y versiones anteriores a 10.1.0.160(C00E160R2P8), presentan una vulnerabilidad de divulgación de información. La configuración predeterminada de ciertas funciones de WI-FI en el sistema parece no segura, un atacante puede diseñar un punto de acceso (hotspot) WI-FI para iniciar el ataque. • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200708-01-smartphone-en •
CVSS: 5.3EPSS: 0%CPEs: 4EXPL: 0CVE-2020-1836
https://notcve.org/view.php?id=CVE-2020-1836
HUAWEI P30 with versions earlier than 10.1.0.160(C00E160R2P11) and HUAWEI P30 Pro with versions earlier than 10.1.0.160(C00E160R2P8) have an information disclosure vulnerability. Certain function's default configuration in the system seems insecure, an attacker should craft a WI-FI hotspot to launch the attack. Successful exploit could cause information disclosure. HUAWEI P30 con versiones anteriores a 10.1.0.160(C00E160R2P11) y HUAWEI P30 Pro con versiones anteriores a 10.1.0.160(C00E160R2P8), presenta una vulnerabilidad de divulgación de información. Una configuración predeterminada de ciertas funciones en el sistema parece no segura, un atacante debería diseñar un hotspot WI-FI para iniciar el ataque. • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200624-01-smartphone-en •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2020-9226
https://notcve.org/view.php?id=CVE-2020-9226
HUAWEI P30 with versions earlier than 10.1.0.135(C00E135R2P11) have an improper signature verification vulnerability. The system does not improper check signature of specific software package, an attacker may exploit this vulnerability to load a crafted software package to the device. HUAWEI P30 con versiones anteriores a 10.1.0.135(C00E135R2P11), presenta una vulnerabilidad de comprobación de firma inapropiada. El sistema no comprueba apropiadamente una firma de un paquete de software específico, un atacante puede explotar esta vulnerabilidad para cargar un paquete de software diseñado en el dispositivo • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200701-02-smartphone-en • CWE-347: Improper Verification of Cryptographic Signature •