Huawei smartphones Taurus-AL00B with versions earlier than 10.0.0.205(C00E201R7P2) have an improper authentication vulnerability. The software insufficiently validate the user's identity when a user wants to do certain operation. An attacker can trick user into installing a malicious application to exploit this vulnerability. Successful exploit may cause some information disclosure.
References
Link | Resource |
---|---|
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200415-01-smartphone-en | Vendor Advisory |
https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200415-01-smartphone-en | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: huawei
Published: 2020-04-20T19:33:22
Updated: 2020-04-20T19:34:35
Reserved: 2020-02-18T00:00:00
Link: CVE-2020-9070
JSON object: View
NVD Information
Status : Analyzed
Published: 2020-04-20T20:15:11.870
Modified: 2021-07-21T11:39:23.747
Link: CVE-2020-9070
JSON object: View
Redhat Information
No data.
CWE