Home
LOW: 3.5 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:NDefault status
unaffected
Versions earlier than 10.1.0.160(C00E160R3P8)
affected
Versions earlier than 10.1.0.160(C01E160R2P8)
affected
Default status
unaffected
Versions earlier than 10.1.0.160(C00E160R2P11)
affected
Default status
unaffected
Versions earlier than 10.1.0.160(C00E160R2P8)
affected
Versions earlier than 10.1.0.160(C01E160R2P8)
affected
Default status
unaffected
Versions earlier than 10.1.0.160(C00E160R2P11)
affected
Default status
unaffected
Versions earlier than 10.1.0.160(C00E160R8P12)
affected
Default status
unaffected
Versions earlier than 10.1.0.88(C00E88R8P1)
affected
Default status
unaffected
Versions earlier than 10.1.0.160(C00E160R8P12)
affected
Description
There is an improper authorization vulnerability in some Huawei smartphones. An attacker could perform a series of operation in specific mode to exploit this vulnerability. Successful exploit could allow the attacker to bypass app lock. (Vulnerability ID: HWPSIRT-2019-12144) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2020-9081.
Problem types
CWE-285 Improper Authorization
Product status
Versions earlier than 10.1.0.160(C00E160R3P8)
Versions earlier than 10.1.0.160(C01E160R2P8)
Versions earlier than 10.1.0.160(C00E160R2P11)
Versions earlier than 10.1.0.160(C00E160R2P8)
Versions earlier than 10.1.0.160(C01E160R2P8)
Versions earlier than 10.1.0.160(C00E160R2P11)
Versions earlier than 10.1.0.160(C00E160R8P12)
Versions earlier than 10.1.0.88(C00E88R8P1)
Versions earlier than 10.1.0.160(C00E160R8P12)
References
www.huawei.com/...s/2020/huawei-sa-20200826-15-smartphone-en