Description
Huawei smart phones Honor V20 with the versions before 9.0.1.161(C00E161R2P2) have an information leak vulnerability. An attacker may trick a user into installing a malicious application. Due to coding error during layer information processing, attackers can exploit this vulnerability to obtain some layer information.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_confirm
https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190807-01-mobile-en
Scores
CVSS v3
3.3
EPSS
0.0009
EPSS Percentile
25.2%
Attack Vector
LOCAL
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
Details
Status
published
Products (1)
huawei/honor_v20_firmware
< 9.0.1.161\(c00e161r2p2\)
Published
Aug 08, 2019
Tracked Since
Feb 18, 2026