HUAWEI Mate 20 Pro smartphones versions earlier than 10.0.0.175(C00E69R3P8) have an improper authentication vulnerability. The software does not sufficiently validate the name of apk file in a special condition which could allow an attacker to forge a crafted application as a normal one. Successful exploit could allow the attacker to bypass digital balance function.
References
Link | Resource |
---|---|
https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200108-01-smartphone-en | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: huawei
Published: 2020-01-09T17:13:18
Updated: 2020-01-09T17:13:18
Reserved: 2019-11-29T00:00:00
Link: CVE-2020-1786
JSON object: View
NVD Information
Status : Analyzed
Published: 2020-01-09T18:15:10.530
Modified: 2020-01-15T15:17:46.447
Link: CVE-2020-1786
JSON object: View
Redhat Information
No data.
CWE