CVE-2020-1796
Description
There is an improper authorization vulnerability in several smartphones. The software incorrectly performs an authorization to certain user, successful exploit could allow a low privilege user to do certain operation which the user are supposed not to do.Affected product versions include:HUAWEI Mate 20 versions Versions earlier than 10.0.0.188(C00E74R3P8);HUAWEI Mate 30 Pro versions Versions earlier than 10.0.0.203(C00E202R7P2).
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
CVE-2020-1796 is an improper authorization vulnerability in Huawei smartphones that allows a low-privilege user to perform unauthorized operations.
Vulnerability
CVE-2020-1796 is an improper authorization vulnerability present in HUAWEI Mate 20 (versions earlier than 10.0.0.188(C00E74R3P8)) and HUAWEI Mate 30 Pro (versions earlier than 10.0.0.203(C00E202R7P2)). The software incorrectly performs authorization checks for certain operations, allowing a low-privilege user to perform actions they are not supposed to [1].
Exploitation
An attacker with low-privilege access to the device can exploit this vulnerability by performing certain operations that should be restricted. The vulnerability does not require any special network position or user interaction; it is triggered by the lack of proper authorization checks in the software [1].
Impact
Successful exploitation allows the low-privilege attacker to execute operations that they are not authorized to perform, potentially leading to unauthorized access or modifications. The exact impact on confidentiality, integrity, or availability is not detailed beyond the indication that the attacker can perform forbidden operations [1].
Mitigation
Huawei has released software updates to fix this vulnerability. The resolved versions are HUAWEI Mate 20: 10.0.0.188(C00E74R3P8) and HUAWEI Mate 30 Pro: 10.0.0.203(C00E202R7P2). Users should update their devices to these versions to mitigate the risk [1].
AI Insight generated on May 27, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
3- HUAWEI/Mate 20description
- Range: <10.0.0.203(C00E202R7P2)
- Range: <10.0.0.188(C00E74R3P8)
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- www.huawei.com/en/psirt/security-advisories/huawei-sa-20200318-05-smartphone-enmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.