Vulnerability Details : CVE-2020-1836
HUAWEI P30 with versions earlier than 10.1.0.160(C00E160R2P11) and HUAWEI P30 Pro with versions earlier than 10.1.0.160(C00E160R2P8) have an information disclosure vulnerability. Certain function's default configuration in the system seems insecure, an attacker should craft a WI-FI hotspot to launch the attack. Successful exploit could cause information disclosure.
Vulnerability category: Information leak
Products affected by CVE-2020-1836
- cpe:2.3:o:huawei:p30_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:huawei:p30_pro_firmware:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2020-1836
0.04%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 10 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2020-1836
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
2.9
|
LOW | AV:A/AC:M/Au:N/C:P/I:N/A:N |
5.5
|
2.9
|
NIST | |
|
5.3
|
MEDIUM | CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N |
1.6
|
3.6
|
NIST |
References for CVE-2020-1836
-
https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200624-01-smartphone-en
Security Advisory - Information Disclosure Vulnerability in Several SmartphonesVendor Advisory
Jump to