Mate 20 Firmware Security Vulnerabilities and Issues — Mate 20 Firmware CVE List

Lucene search

HuaweiMate 20 Firmware

8 matches found

CVE•added 2019/07/10 6:15 p.m.•124 views

CVE-2019-5220

There is a Factory Reset Protection (FRP) bypass vulnerability on several smartphones. The system does not sufficiently verify the permission, an attacker could do a certain operation on certain step of setup wizard. Successful exploit could allow the attacker bypass the FRP protection. Affected pr...

4.6CVSS4.7AI score0.00024EPSS

CVE•added 2020/10/19 8:15 p.m.•55 views

CVE-2020-9092

HUAWEI Mate 20 versions earlier than 10.1.0.163(C00E160R3P8) have a JavaScript injection vulnerability. A module does not verify a specific input. This could allow attackers to bypass filter mechanism to launch JavaScript injection. This could compromise normal service of the affected module.

4.6CVSS5.2AI score0.0006EPSS

CVE•added 2020/03/20 3:15 p.m.•47 views

CVE-2020-1793

There is an improper authentication vulnerability in several smartphones. The applock does not perform a sufficient authentication in certain scenarios, successful exploit could allow the attacker to gain certain data of the application which is locked. Affected product versions include:HUAWEI Mate...

4.6CVSS5AI score0.00055EPSS

CVE•added 2024/12/27 10:15 a.m.•47 views

CVE-2020-9082

There is an information disclosure vulnerability in several smartphones. The system has a logic judging error under certain scenario, the attacker should gain the permit to execute commands in ADB mode and then do a series of operation on the phone. Successful exploit could allow the attacker to ga...

4.6CVSS4.3AI score0.00042EPSS

CVE•added 2020/03/20 3:15 p.m.•44 views

CVE-2020-1794

4.6CVSS5AI score0.00055EPSS

CVE•added 2020/08/17 3:15 p.m.•42 views

CVE-2020-9103

HUAWEI Mate 20 smartphones with 9.0.0.205(C00E205R2P1) have a logic error vulnerability. In a special scenario, the system does not properly process. As a result, attackers can perform a series of operations to successfully establish P2P connections that are rejected by the peer end. As a result, t...

4.6CVSS4.5AI score0.00025EPSS

CVE•added 2020/10/12 2:15 p.m.•39 views

CVE-2020-9109

There is an information disclosure vulnerability in several smartphones. The device does not sufficiently validate the identity of smart wearable device in certain specific scenario, the attacker need to gain certain information in the victim's smartphone to launch the attack, and successful exploi...

4.6CVSS4.7AI score0.00028EPSS

CVE•added 2021/07/13 12:15 p.m.•36 views

CVE-2021-22440

There is a path traversal vulnerability in some Huawei products. The vulnerability is due to that the software uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the software does not properly va...

4.6CVSS4.7AI score0.00026EPSS