CVE-2019-5250

Name of the Vulnerable Software and Affected Versions Huawei Mate 20 Pro versions prior to 9.1.0.135(C00E133R3P1)

Description The issue is related to improper authorization, where the software fails to properly restrict certain operations of certain privileges. An attacker could trick a user into installing a malicious application before the user enables the student mode function. If successfully exploited, this could allow the attacker to bypass the limitations of the student mode function.

Recommendations For versions prior to 9.1.0.135(C00E133R3P1), update to version 9.1.0.135(C00E133R3P1) or later to resolve the issue. As a temporary workaround, consider avoiding the installation of unknown or untrusted applications, especially before enabling the student mode function.