CVE-2020-1826
Description
Huawei Honor Magic2 mobile phones with versions earlier than 10.0.0.175(C00E59R2P11) have an information leak vulnerability. Due to a module using weak encryption tool, an attacker with the root permission may exploit the vulnerability to obtain some information.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Huawei Honor Magic2 phones before 10.0.0.175(C00E59R2P11) have an information leak due to weak encryption, exploitable by an attacker with root permission.
Vulnerability
The vulnerability exists in Huawei Honor Magic2 mobile phones running versions earlier than 10.0.0.175(C00E59R2P11). A module within the device uses a weak encryption tool, which can be exploited to leak information [1].
Exploitation
An attacker must have root permissions on the device to exploit this vulnerability. No detailed exploitation steps or prerequisites beyond root access have been disclosed in the available references [1].
Impact
Successful exploitation allows an attacker with root privileges to obtain some user information from the device, potentially including sensitive data [1]. The exact scope of information leakage is not specified in the advisory.
Mitigation
Huawei has released a software update version 10.0.0.175(C00E59R2P11) to fix the vulnerability. Users should upgrade to this version or later as soon as possible [1]. No workaround is mentioned.
AI Insight generated on May 27, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
2< 10.0.0.175(C00E59R2P11)+ 1 more
- (no CPE)range: < 10.0.0.175(C00E59R2P11)
- (no CPE)range: Versions earlier than 10.0.0.175(C00E59R2P11)
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- www.huawei.com/en/psirt/security-advisories/huawei-sa-20200108-01-phone-enmitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.