There is a man-in-the-middle (MITM) vulnerability on Huawei P30 smartphones versions before ELE-AL00 9.1.0.162(C01E160R1P12/C01E160R2P1), and P30 Pro versions before VOG-AL00 9.1.0.162 (C01E160R1P12/C01E160R2P1). When users establish connection and transfer data through Huawei Share, an attacker could sniff, spoof and do a series of operations to intrude the Huawei Share connection and launch a man-in-the-middle attack to obtain and tamper the data. (Vulnerability ID: HWPSIRT-2019-03109)
2019-06-04T19:29:00.227
2024-11-21T04:44:31.840
Modified
CVSSv3.0: 6.8 (MEDIUM)
AV:A/AC:M/Au:N/C:P/I:P/A:N
5.5
4.9
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Operating System | huawei | p30_pro_firmware | < vog-al00_9.1.0.162\(c01e160r1p12\/c01e160r2p1\) | Yes |
| Hardware | huawei | p30_pro | - | No |
| Operating System | huawei | p30_firmware | < ele-al00_9.1.0.162\(c01e160r1p12\/c01e160r2p1\) | Yes |
| Hardware | huawei | p30 | - | No |