CVE-2020-1834

MEDIUM

HUAWEI P30/HUAWEI P30 Pro <10.1.0.135(C00E135R2P11/P8) - Code Injec...

Title source: llm

Description

HUAWEI P30 and HUAWEI P30 Pro with versions earlier than 10.1.0.135(C00E135R2P11) and versions earlier than 10.1.0.135(C00E135R2P8) have an insufficient integrity check vulnerability. The system does not check certain software package's integrity sufficiently. Successful exploit could allow an attacker to load a crafted software package to the device.

References (1)

[Vendor Advisory] https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200617-01-smartphone-en

Scores

CVSS v3 4.6

EPSS 0.0001

EPSS Percentile 2.1%

Attack Vector PHYSICAL

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Details

CWE

CWE-354

Status published

Products (2)

huawei/p30_firmware < 10.1.0.135\(c00e135r2p11\)

huawei/p30_pro_firmware < 10.1.0.135\(c00e135r2p8\)

Published Jun 18, 2020

Tracked Since Feb 18, 2026