Description
The Huawei Share function of P20 phones with versions earlier than Emily-L29C 9.1.0.311 has an improper file management vulnerability. The attacker tricks the victim to perform certain operations on the mobile phone during file transfer. Because the file is not properly processed, successfully exploit may cause some files on the victim's mobile phone are deleted.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_confirm
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191113-02-share-en
Scores
CVSS v3
5.7
EPSS
0.0008
EPSS Percentile
23.7%
Attack Vector
ADJACENT_NETWORK
CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
Details
Status
published
Products (1)
huawei/p20_firmware
< emily-l29c_9.1.0.311\(c10e2r1p13t8\)
Published
Nov 29, 2019
Tracked Since
Feb 18, 2026