Flavio Garcia

Name of the Vulnerable Software and Affected Versions: Secure Folder versions prior to SMR Oct-2020 Release 1 Description: The issue is related to an improper authorization of using a debugging command in Secure Folder, which allows unauthorized access to contents in Secure Folder via the debugging command. Recommendations: For versions prior to SMR Oct-2020 Release 1, update to SMR Oct-2020 Release 1 or later to resolve the issue. As a temporary workaround, consider restricting access to the debugging command to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Huawei smart phones (affected versions not specified) **Description** The issue is related to a privilege escalation vulnerability due to design defects. An attacker needs physical contact with the mobile phone to obtain higher privileges and execute relevant commands, resulting in the user's privilege promotion. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.