HUAWEI Mate 20

CVEs (19)

CVE	Vendor / Product	CVSS	Published	Description
CVE-2020-9082	Huawei HUAWEI Mate 20	—	Dec 27, 2024	There is an information disclosure vulnerability in several smartphones. The system has a logic judging error under certain scenario, the attacker should gain the permit to execute commands in ADB mode and then do a series of operation on the phone. Successful exploit could…
CVE-2020-9081	Huawei Huawei Pay	—	Dec 27, 2024	There is an improper authorization vulnerability in some Huawei smartphones. An attacker could perform a series of operation in specific mode to exploit this vulnerability. Successful exploit could allow the attacker to bypass app lock. (Vulnerability ID: HWPSIRT-2019-12144) …
CVE-2020-9080	Huawei HUAWEI Mate 20	—	Dec 27, 2024	There is an improper privilege management vulnerability in Huawei smart phone product. A local, authenticated attacker could craft a specific input to exploit this vulnerability. Successful exploitation may lead to local privilege escalation. (Vulnerability ID:…
CVE-2020-9250	Huawei HUAWEI Mate 20	—	Dec 20, 2024	There is an insufficient authentication vulnerability in some Huawei smart phone. An unauthenticated, local attacker can crafts software package to exploit this vulnerability. Due to insufficient verification, successful exploitation may impact the service. (Vulnerability ID:…
CVE-2021-22440	Huawei HUAWEI Mate 20	—	Jul 13, 2021	There is a path traversal vulnerability in some Huawei products. The vulnerability is due to that the software uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the software…
CVE-2020-9247	Huawei Huawei Pay	—	Dec 7, 2020	There is a buffer overflow vulnerability in several Huawei products. The system does not sufficiently validate certain configuration parameter which is passed from user that would cause buffer overflow. The attacker should trick the user into installing and running a malicious…
CVE-2020-9109	Huawei HUAWEI Mate 20	—	Oct 12, 2020	There is an information disclosure vulnerability in several smartphones. The device does not sufficiently validate the identity of smart wearable device in certain specific scenario, the attacker need to gain certain information in the victim's smartphone to launch the attack,…
CVE-2020-1831	Huawei HUAWEI Mate 20	—	May 29, 2020	HUAWEI Mate 20 smartphones with versions earlier than 10.0.0.195(SP31C00E74R3P8) have an improper authorization vulnerability. The digital balance function does not sufficiently restrict the using time of certain user, successful exploit could allow the user break the limit of…
CVE-2020-1809	Huawei Mate 10	—	May 29, 2020	HUAWEI Mate 10 smartphones with versions earlier than 10.0.0.143(C00E143R2P4) have an information disclosure vulnerability. The attacker could wake up voice assistant then do a series of crafted voice operation, successful exploit could allow the attacker read certain files…
CVE-2020-1797	Huawei HUAWEI Mate 20	—	May 29, 2020	HUAWEI Mate 20 smartphones with versions earlier than 10.0.0.185(C00E74R3P8) have an improper authorization vulnerability. The system does not properly restrict certain operation in ADB mode, successful exploit could allow certain user break the limit of digital balance function.
CVE-2019-5303	Huawei Huawei Pay	—	Apr 27, 2020	There are two denial of service vulnerabilities on some Huawei smartphones. An attacker may send specially crafted TD-SCDMA messages from a rogue base station to the affected devices. Due to insufficient input validation of two values when parsing the messages, successful…
CVE-2019-5302	Huawei Huawei Pay	—	Apr 27, 2020	There are two denial of service vulnerabilities on some Huawei smartphones. An attacker may send specially crafted TD-SCDMA messages from a rogue base station to the affected devices. Due to insufficient input validation of two values when parsing the messages, successful…
CVE-2020-1807	Huawei HUAWEI Mate 20	—	Apr 27, 2020	HUAWEI Mate 20 smartphones with versions earlier than 10.0.0.188(C00E74R3P8) have an improper authorization vulnerability. The software does not properly restrict certain user's modification of certain configuration file, successful exploit could allow the attacker to bypass app…
CVE-2020-1796	Huawei HUAWEI Mate 20	—	Mar 20, 2020	There is an improper authorization vulnerability in several smartphones. The software incorrectly performs an authorization to certain user, successful exploit could allow a low privilege user to do certain operation which the user are supposed not to do.Affected product…
CVE-2020-1791	Huawei HUAWEI Mate 20	—	Feb 18, 2020	HUAWEI Mate 20 smartphones with versions earlier than 10.0.0.185(C00E74R3P8) have an improper authorization vulnerability. The system has a logic judging error under certain scenario, successful exploit could allow the attacker to switch to third desktop after a series of…
CVE-2020-1882	Huawei HUAWEI Mate 20	—	Feb 17, 2020	Huawei mobile phones Ever-L29B versions earlier than 10.0.0.180(C185E6R3P3), earlier than 10.0.0.180(C432E6R1P7), earlier than 10.0.0.180(C636E5R2P3); HUAWEI Mate 20 RS versions earlier than 10.0.0.175(C786E70R3P8); HUAWEI Mate 20 X versions earlier than 10.0.0.176(C00E70R2P8);…
CVE-2020-1786	Huawei HUAWEI Mate 20	—	Jan 9, 2020	HUAWEI Mate 20 Pro smartphones versions earlier than 10.0.0.175(C00E69R3P8) have an improper authentication vulnerability. The software does not sufficiently validate the name of apk file in a special condition which could allow an attacker to forge a crafted application as a…
CVE-2020-1787	Huawei HUAWEI Mate 20	—	Jan 9, 2020	HUAWEI Mate 20 smartphones versions earlier than 9.1.0.139(C00E133R3P1) have an improper authentication vulnerability. The system has a logic error under certain scenario, successful exploit could allow the attacker who gains the privilege of guest user to access to the host…
CVE-2019-5214	Huawei Mate10	—	Jun 6, 2019	There is a use after free vulnerability on certain driver component in Huawei Mate10 smartphones versions earlier than ALP-AL00B 9.0.0.167(C00E85R2P20T8). An attacker tricks the user into installing a malicious application, which make the software to reference memory after it…

CVE-2020-9082Dec 27, 2024
Huawei
HUAWEI Mate 20
risk 0.00cvss —epss 0.00
There is an information disclosure vulnerability in several smartphones. The system has a logic judging error under certain scenario, the attacker should gain the permit to execute commands in ADB mode and then do a series of operation on the phone. Successful exploit could…
CVE-2020-9081Dec 27, 2024
Huawei
Huawei Pay
risk 0.00cvss —epss 0.00
There is an improper authorization vulnerability in some Huawei smartphones. An attacker could perform a series of operation in specific mode to exploit this vulnerability. Successful exploit could allow the attacker to bypass app lock. (Vulnerability ID: HWPSIRT-2019-12144) …
CVE-2020-9080Dec 27, 2024
Huawei
HUAWEI Mate 20
risk 0.00cvss —epss 0.00
There is an improper privilege management vulnerability in Huawei smart phone product. A local, authenticated attacker could craft a specific input to exploit this vulnerability. Successful exploitation may lead to local privilege escalation. (Vulnerability ID:…
CVE-2020-9250Dec 20, 2024
Huawei
HUAWEI Mate 20
risk 0.00cvss —epss 0.00
There is an insufficient authentication vulnerability in some Huawei smart phone. An unauthenticated, local attacker can crafts software package to exploit this vulnerability. Due to insufficient verification, successful exploitation may impact the service. (Vulnerability ID:…
CVE-2021-22440Jul 13, 2021
Huawei
HUAWEI Mate 20
risk 0.00cvss —epss 0.00
There is a path traversal vulnerability in some Huawei products. The vulnerability is due to that the software uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the software…
CVE-2020-9247Dec 7, 2020
Huawei
Huawei Pay
risk 0.00cvss —epss 0.00
There is a buffer overflow vulnerability in several Huawei products. The system does not sufficiently validate certain configuration parameter which is passed from user that would cause buffer overflow. The attacker should trick the user into installing and running a malicious…
CVE-2020-9109Oct 12, 2020
Huawei
HUAWEI Mate 20
risk 0.00cvss —epss 0.00
There is an information disclosure vulnerability in several smartphones. The device does not sufficiently validate the identity of smart wearable device in certain specific scenario, the attacker need to gain certain information in the victim's smartphone to launch the attack,…
CVE-2020-1831May 29, 2020
Huawei
HUAWEI Mate 20
risk 0.00cvss —epss 0.00
HUAWEI Mate 20 smartphones with versions earlier than 10.0.0.195(SP31C00E74R3P8) have an improper authorization vulnerability. The digital balance function does not sufficiently restrict the using time of certain user, successful exploit could allow the user break the limit of…
CVE-2020-1809May 29, 2020
Huawei
Mate 10
risk 0.00cvss —epss 0.00
HUAWEI Mate 10 smartphones with versions earlier than 10.0.0.143(C00E143R2P4) have an information disclosure vulnerability. The attacker could wake up voice assistant then do a series of crafted voice operation, successful exploit could allow the attacker read certain files…
CVE-2020-1797May 29, 2020
Huawei
HUAWEI Mate 20
risk 0.00cvss —epss 0.00
HUAWEI Mate 20 smartphones with versions earlier than 10.0.0.185(C00E74R3P8) have an improper authorization vulnerability. The system does not properly restrict certain operation in ADB mode, successful exploit could allow certain user break the limit of digital balance function.
CVE-2019-5303Apr 27, 2020
Huawei
Huawei Pay
risk 0.00cvss —epss 0.00
There are two denial of service vulnerabilities on some Huawei smartphones. An attacker may send specially crafted TD-SCDMA messages from a rogue base station to the affected devices. Due to insufficient input validation of two values when parsing the messages, successful…
CVE-2019-5302Apr 27, 2020
Huawei
Huawei Pay
risk 0.00cvss —epss 0.00
There are two denial of service vulnerabilities on some Huawei smartphones. An attacker may send specially crafted TD-SCDMA messages from a rogue base station to the affected devices. Due to insufficient input validation of two values when parsing the messages, successful…
CVE-2020-1807Apr 27, 2020
Huawei
HUAWEI Mate 20
risk 0.00cvss —epss 0.00
HUAWEI Mate 20 smartphones with versions earlier than 10.0.0.188(C00E74R3P8) have an improper authorization vulnerability. The software does not properly restrict certain user's modification of certain configuration file, successful exploit could allow the attacker to bypass app…
CVE-2020-1796Mar 20, 2020
Huawei
HUAWEI Mate 20
risk 0.00cvss —epss 0.00
There is an improper authorization vulnerability in several smartphones. The software incorrectly performs an authorization to certain user, successful exploit could allow a low privilege user to do certain operation which the user are supposed not to do.Affected product…
CVE-2020-1791Feb 18, 2020
Huawei
HUAWEI Mate 20
risk 0.00cvss —epss 0.00
HUAWEI Mate 20 smartphones with versions earlier than 10.0.0.185(C00E74R3P8) have an improper authorization vulnerability. The system has a logic judging error under certain scenario, successful exploit could allow the attacker to switch to third desktop after a series of…
CVE-2020-1882Feb 17, 2020
Huawei
HUAWEI Mate 20
risk 0.00cvss —epss 0.00
Huawei mobile phones Ever-L29B versions earlier than 10.0.0.180(C185E6R3P3), earlier than 10.0.0.180(C432E6R1P7), earlier than 10.0.0.180(C636E5R2P3); HUAWEI Mate 20 RS versions earlier than 10.0.0.175(C786E70R3P8); HUAWEI Mate 20 X versions earlier than 10.0.0.176(C00E70R2P8);…
CVE-2020-1786Jan 9, 2020
Huawei
HUAWEI Mate 20
risk 0.00cvss —epss 0.00
HUAWEI Mate 20 Pro smartphones versions earlier than 10.0.0.175(C00E69R3P8) have an improper authentication vulnerability. The software does not sufficiently validate the name of apk file in a special condition which could allow an attacker to forge a crafted application as a…
CVE-2020-1787Jan 9, 2020
Huawei
HUAWEI Mate 20
risk 0.00cvss —epss 0.00
HUAWEI Mate 20 smartphones versions earlier than 9.1.0.139(C00E133R3P1) have an improper authentication vulnerability. The system has a logic error under certain scenario, successful exploit could allow the attacker who gains the privilege of guest user to access to the host…
CVE-2019-5214Jun 6, 2019
Huawei
Mate10
risk 0.00cvss —epss 0.00
There is a use after free vulnerability on certain driver component in Huawei Mate10 smartphones versions earlier than ALP-AL00B 9.0.0.167(C00E85R2P20T8). An attacker tricks the user into installing a malicious application, which make the software to reference memory after it…