Honor V30 smartphones with versions earlier than 10.0.1.135(C00E130R4P1) have an improper authentication vulnerability. Certain applications do not properly validate the identity of another application who would call its interface. An attacker could trick the user into installing a malicious application. Successful exploit could allow unauthorized actions leading to information disclosure.
References
Link | Resource |
---|---|
https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-02-smartphone-en | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: huawei
Published: 2020-01-21T22:49:53
Updated: 2020-01-21T22:49:53
Reserved: 2019-11-29T00:00:00
Link: CVE-2020-1788
JSON object: View
NVD Information
Status : Analyzed
Published: 2020-01-21T23:15:13.647
Modified: 2020-01-24T22:03:30.393
Link: CVE-2020-1788
JSON object: View
Redhat Information
No data.
CWE