HUAWEI P30 smartphone with versions earlier than 10.1.0.135(C00E135R2P11) have an improper input verification vulnerability. An attribution in a module is not set correctly and some verification is lacked. Attackers with local access can exploit this vulnerability by injecting malicious fragment. This may lead to user information leak.
https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200708-02-smartphone-en
https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200708-02-smartphone-en
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9258
