The Near Field Communication (NFC) module in Mate 9 Huawei mobile phones with the versions before MHA-L29B 8.0.0.366(C567) has an information leak vulnerability due to insufficient validation on data transfer requests. When an affected mobile phone sends files to an attackerβs mobile phone using the NFC function, the attacker can obtain arbitrary files from the mobile phone, causing information leaks.
[
{
"product": "Mate 9",
"vendor": "Huawei Technologies Co., Ltd.",
"versions": [
{
"status": "affected",
"version": "The versions before MHA-L29B 8.0.0.366(C567)"
}
]
}
]