CVE-2020-9076

Published: Jun 15, 2020

Modified: Aug 4, 2024

PUBLISHED

Description

HUAWEI P30;HUAWEI P30 Pro;Tony-AL00B smartphones with versions earlier than 10.1.0.135(C00E135R2P11); versions earlier than 10.1.0.135(C00E135R2P8), versions earlier than 10.1.0.135 have an improper authentication vulnerability. Due to the identity of the message sender not being properly verified, an attacker can exploit this vulnerability through man-in-the-middle attack to induce user to access malicious URL.

Vendor	Product	Versions
n/a	HUAWEI P30;HUAWEI P30 Pro;Tony-AL00B	affected `Versions earlier than 10.1.0.135(C00E135R2P11)` affected `Versions earlier than 10.1.0.135(C00E135R2P8),Versions earlier than 10.1.0.135(C01E135R2P8)` affected `Versions earlier than 10.1.0.137(C00E137R2P11)`

References

https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200610-02-phone-en

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2020-9076

Description

Affected Products

References