CVE-2020-1882
CVE-2020-1882
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 0.2%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
17 Feb 2020Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Huawei mobile phones Ever-L29B versions earlier than 10.0.0.180(C185E6R3P3), earlier than 10.0.0.180(C432E6R1P7), earlier than 10.0.0.180(C636E5R2P3); HUAWEI Mate 20 RS versions earlier than 10.0.0.175(C786E70R3P8); HUAWEI Mate 20 X versions earlier than 10.0.0.176(C00E70R2P8); and Honor Magic2 versions earlier than 10.0.0.175(C00E59R2P11) have an improper authorization vulnerability. Due to improper authorization of some function, attackers can bypass the authorization to perform some operations.
Affected products
Huawei · Ever-L29BHuawei · Honor Magic2Huawei · HUAWEI Mate 20 RSHuawei · HUAWEI Mate 20 XWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →