CVE-2020-1872
Last modified
CVE-2020-1872 is a medium-severity vulnerability rated 4.6/10 on the CVSS scale. Huawei smart phones P10 Plus with versions earlier than 9.1.0.201(C01E75R1P12T8), earlier than 9.1.0.252(C185E2R1P9T8), earlier than 9.1.0.252(C432E4R1P9T8), and earlier than 9.1.0.255(C576E6R1P8T8) have a digital balance bypass vulnerability. When re-configuring the mobile phone at the digital balance mode, an attacker can perform some operations to bypass the startup wizard, and then open some switch. EPSS estimates a 0.21% chance of exploitation in the next 30 days.
Description
Huawei smart phones P10 Plus with versions earlier than 9.1.0.201(C01E75R1P12T8), earlier than 9.1.0.252(C185E2R1P9T8), earlier than 9.1.0.252(C432E4R1P9T8), and earlier than 9.1.0.255(C576E6R1P8T8) have a digital balance bypass vulnerability. When re-configuring the mobile phone at the digital balance mode, an attacker can perform some operations to bypass the startup wizard, and then open some switch. As a result, the digital balance function is bypassed.
Metrics
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Huawei | P10 Plus Firmware | < 9.1.0.201\(c01e75r1p12t8\) |
| Huawei | P10 Plus Firmware | < 9.1.0.252\(c185e2r1p9t8\) |
| Huawei | P10 Plus Firmware | < 9.1.0.252\(c432e4r1p9t8\) |
| Huawei | P10 Plus Firmware | < 9.1.0.255\(c576e6r1p8t8\) |
References
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2020-1872?
How severe is CVE-2020-1872?
How do I fix CVE-2020-1872?
Are you affected by CVE-2020-1872?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST