VYPR
← All advisories
Unrated severityNVD Advisory· Published Jan 21, 2020· Updated Aug 4, 2024

CVE-2020-1840

CVE-2020-1840

Description

HUAWEI Mate 20 smart phones with versions earlier than 10.0.0.175(C00E70R3P8) have an insufficient authentication vulnerability. A local attacker with high privilege can execute a specific command to exploit this vulnerability. Successful exploitation may cause information leak and compromise the availability of the smart phones.Affected product versions include: HUAWEI Mate 20 versions Versions earlier than 10.0.0.175(C00E70R3P8)

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Insufficient authentication in HUAWEI Mate 20 before 10.0.0.175 allows a local high-privilege attacker to cause information leak and availability compromise.

Vulnerability

HUAWEI Mate 20 smart phones with versions earlier than 10.0.0.175(C00E70R3P8) have an insufficient authentication vulnerability. The bug allows a local attacker with high privilege to execute a specific command, bypassing proper authentication checks.

Exploitation

A local attacker must have high privileges on the device. With those privileges, the attacker can execute a specific command, likely through a command-line interface or a system utility, to trigger the vulnerability.

Impact

Successful exploitation may cause information leak (unauthorized disclosure of sensitive data) and compromise the availability of the smart phones, potentially leading to denial of service or system instability.

Mitigation

Huawei has released software update version 10.0.0.175(C00E70R3P8) to fix this vulnerability. Users should upgrade their devices to this version or later. No workarounds are documented.

[1] https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-smartphone-en

References
  1. Security Advisory - Insufficient Authentication Vulnerability in Some Huawei Smart Phones

AI Insight generated on May 27, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

2
  • HUAWEI/Mate 20description
  • Huawei/Mate20llm-fuzzy
    Range: < 10.0.0.175(C00E70R3P8)

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

1

News mentions

0

No linked articles in our index yet.